InfoSecBulletin Cybersecurity for mankind
Cybersecurity researcher Jeremiah Fowler reported to Website Planet that he found a non-password-protected 1.2 TB dataset containing over 3 million records from Builder.ai, a London company that provides AI software and app development solutions without requiring coding skills.
Jeremiah Fowler claimed the unsecured database contained 3,077,542 records, totaling 1.29 TB. A sample of the documents revealed customer proposals, NDA agreements, invoices, tax documents, email screenshots, and internal images.
Hacker claim Leak of Deloitte Source Code & GitHub Credentials
CISA Issued Guidance for SIEM and SOAR Implementation
Linux flaws enable password hash theft via core dumps in Ubuntu, RHEL, Fedora
Australia enacts mandatory ransomware payment reporting
Why Govt Demands Foreign CCTV Firms to Submit Source Code?
CVE-2023-39780
Botnet hacks thousands of ASUS routers
Bangladesh Bank instructed using AI to prevent online gambling
251 Amazon-Hosted IPs Used in Exploit Scan for ColdFusion, Struts, and Elasticsearch
Zero-Trust Policy bypass to Exploit Vulns & Manipulate NHI Secrets
Evaly E-commerce Platform Allegedly Hacked
He said another two critical documents contained access and configuration details for two cloud storage databases, including secret access keys. However, if these access keys were misused, they could expose sensitive data.
The database and its documents belong to Engineer.ai and Builder.ai, which are the same company that rebranded in 2019. Builder.ai is a London-based tech firm that offers human-assisted AI for app development, with offices across the US, Asia, Europe, and the Middle East.
Jeremiah Fowler said After a responsible disclosure i got , “unfortunately it’s taking longer than we’d like due to some complexities with dependent systems” the replay from the company.
In a 2023 press release, Builder.ai announced it secured over $250 million in Series D funding, led by the Qatar Investment Authority, bringing its total funding to over $450 million. That year, Builder.ai was ranked #3 in Fast Company’s list of the World’s Most Innovative Companies in the Artificial Intelligence category.
Fowler advised encrypting data and creating an incident response plan with access control to handle breaches primarily.
“Workshop on Cybersecurity Awareness and Needs Analysis” held at BBTA
