InfoSecBulletin Cybersecurity for mankind
Cybersecurity researcher Jeremiah Fowler reported to Website Planet that he found a non-password-protected 1.2 TB dataset containing over 3 million records from Builder.ai, a London company that provides AI software and app development solutions without requiring coding skills.
Jeremiah Fowler claimed the unsecured database contained 3,077,542 records, totaling 1.29 TB. A sample of the documents revealed customer proposals, NDA agreements, invoices, tax documents, email screenshots, and internal images.
Delay patching leaves about 50,000 Fortinet firewalls to zero-day attack
Daily Security Update Dated: 21.01.2025
126 Linux kernel Vulns Allow Attackers Exploit 78 Linux Sub-Systems
CERT-UA alerts about “security audit” requests through AnyDesk
Oracle Critical Pre-Release update addressed 320 flaw
OWASP Reveils Top 10 Smart Contract Vulnerabilities for 2025
Multiple Azure DevOps Vulns Allow To Inject CRLF Queries & Rebind DNS
Intel holds 22 employees from one Bangladeshi University
VPN Surge 1500% in USA after TikTok Shut Down
MITRE Launches D3FEND 1.0; The Milestone for Cybersecurity Ontology
He said another two critical documents contained access and configuration details for two cloud storage databases, including secret access keys. However, if these access keys were misused, they could expose sensitive data.
The database and its documents belong to Engineer.ai and Builder.ai, which are the same company that rebranded in 2019. Builder.ai is a London-based tech firm that offers human-assisted AI for app development, with offices across the US, Asia, Europe, and the Middle East.
Jeremiah Fowler said After a responsible disclosure i got , “unfortunately it’s taking longer than we’d like due to some complexities with dependent systems” the replay from the company.
In a 2023 press release, Builder.ai announced it secured over $250 million in Series D funding, led by the Qatar Investment Authority, bringing its total funding to over $450 million. That year, Builder.ai was ranked #3 in Fast Company’s list of the World’s Most Innovative Companies in the Artificial Intelligence category.
Fowler advised encrypting data and creating an incident response plan with access control to handle breaches primarily.
“Workshop on Cybersecurity Awareness and Needs Analysis” held at BBTA
