Hack Read -
EskyFun stored a trove of gamers’ data on an Elastricsearch server that was exposed to the public without any security authentication.
The research team at vpnMentor reported an error on the part of famous Chinese Android game developer EskyFun that leaked sensitive data of at least one million online gamers.
Reportedly, EskyFun used an unsecured Elasticsearch server for storing vast amounts of data collected from users. Researchers revealed that the information was stored in rolling 7 days’ user data sets for around three of the company’s games, which contained over 360 million pieces of data.
“This is an enormous amount of data collected from a few small, not well-known mobile games,” researchers noted in their blog post.
Breach Discovered in July 2021
The data date back to July 2021, and as soon as the unprotected server was discovered, VPNMentor’s team informed EskyFun but, the company did not respond. VPNMentor notified
The article Android game developer EskyFun exposed 1 million gamers to hackers originally appeared on Hack Read.