• Hacking News
    • Leaks
    • WikiLeaks
    • Anonymous
  • Tech
    • Android
    • Apple News
    • BlackBerry
    • Google News
    • Microsoft
    • Motorola
    • Nokia
    • Samsung
    • 3D
  • Cyber Crime
    • Phishing Scam
  • How To
  • Cyber Events
    • Censorship
    • Cyber Attacks
  • Security
    • Malware
  • Surveillance
    • Drones
    • NSA
    • Privacy
  • Explore
    • Gaming
    • Science
    • Viral
HackRead
  • April 21st, 2021
  • Home
  • Advertise
  • Privacy Policy
  • Contact Us
HackRead
  • Hacking News
    • Leaks
    • WikiLeaks
    • Anonymous
  • Tech
    • Android
    • Apple News
    • BlackBerry
    • Google News
    • Microsoft
    • Motorola
    • Nokia
    • Samsung
    • 3D
  • Cyber Crime
    • Phishing Scam
  • How To
  • Cyber Events
    • Censorship
    • Cyber Attacks
  • Security
    • Malware
  • Surveillance
    • Drones
    • NSA
    • Privacy
  • Explore
    • Gaming
    • Science
    • Viral
  • Follow us
    • Facebook
    • Twitter
    • Linkedin
    • Youtube
Home
Hacking News
Leaks

Personal data of over 50,000 Honda Connect App leaked

June 4th, 2018 Waqas Security, Leaks 0 comments
Personal data of over 50,000 Honda Connect App leaked
Share on FacebookShare on Twitter

Researchers at Kromtech Security Center discovered a trove of data belonging to Honda Connect App which was exposed online. The data was stored in two unsecured Amazon AWS S3 Buckets available for public access without any protection

More: 119,000 FedEx users passports, security ID & driving licenses exposed

Simply put, anyone with an Internet connection and basic knowledge of AWS buckets had access to over 50,000 customers using Honda Connect, an app developed for Indian customer of Honda vehicles providing access to detailed information about Honda vehicles and other services. 

According to Kromtech researchers, the exposed data contained personal data of users including names, gender, vehicle identification number (VIN), Connect IDs, phone numbers, emails and passwords for users and their trusted contacts.

Personal data of over 50,000 Honda Connect App leaked

Screenshot of the exposed Honda Connect App data shared by Kromtech Security Center.

Kromtech researchers further noted that they were not the only good guys to access the exposed data, in fact, the United Kingdom-based IT security researcher Robert Wiggins identified the Honda Connect app databases before Kromtech and left a note on February 28, 2018, urging the company to secure their data.

Wiggins is the same researcher who a few days ago identified how a teen monitoring app exposing plaintext Apple ID passwords of its users stored on an unprotected Amazon S3 bucket. As for Honda Connect, Kromtech researchers contacted Honda India who was slow to respond but ultimately secured both S3 Buckets.

More: Localblox exposes personal data of millions of Facebook & LinkedIn users

If you are hosting your data on Amazon AWS S3 Buckets make sure they are properly secured and not available for public access. Lately, there have been tons of cases in which unprotected S3 buckets have posed a major threat to user privacy. For instance, a few weeks ago, India cricket board exposed data of thousands of players and official hosted on an S3 bucket.

In another incident, researchers identified hackers were mining Monero cryptocurrency on exposed S3 buckets – One of the buckets belonged to LA times while the other was owned by Tesla, Inc. (formerly Tesla Motors). 

  • Tags
  • Amazon
  • AWS
  • Honda
  • India
  • internet
  • LEAKS
  • Privacy
  • Ransom
  • security
  • Vulnerability
Facebook Twitter LinkedIn Pinterest
Previous article Steam fixes 10-year-old critical remote code execution vulnerability
Next article Misconfigured Google Groups Settings Leaking Sensitive Data
Waqas

Waqas

I am a UK-based cybersecurity journalist with a passion for covering the latest happenings in cyber security and tech world. I am also into gaming, reading and investigative journalism

Related Posts
WhatsApp Pink is malware spreading through group chats

WhatsApp Pink is malware spreading through group chats

2021 and Emerging Cybersecurity Threats

2021 and Emerging Cybersecurity Threats

Unpatched MS Exchange servers hit by cryptojacking malware

Unpatched MS Exchange servers hit by cryptojacking malware

Newsletter

Get the best stories straight into your inbox!



Don’t worry, we don’t spam

Latest Posts
REvil ransomware gang hits Apple supplier Quanta; warns of data leak
Cyber Crime

REvil ransomware gang hits Apple supplier Quanta; warns of data leak

Hackers claims to be selling 13tb of Domino’s India data
Hacking News

Hackers claims to be selling 13tb of Domino’s India data

WhatsApp Pink is malware spreading through group chats
Security

WhatsApp Pink is malware spreading through group chats

HACKREAD is a News Platform that centers on InfoSec, Cyber Crime, Privacy, Surveillance and Hacking News with full-scale reviews on Social Media Platforms & Technology trends. Founded in 2011, HackRead is based in the United Kingdom.

Follow us