Users on an adult streaming platform may have experienced the wrong kind of exposure when over seven terabytes of data was found on an unprotected database online. The damage done could include the dissemination of amateur pornographic user images.
CAM4, a video streaming service primarily for adult amateur webcam content, reportedly left more than 11 million user records online on an unprotected Elasticsearch server. The error was unintentional. The data was discovered by researchers at Safety Detectives, a security review website.
Leaked customer data potentially included, but was not limited to, names, email addresses, countries of origin, gender preferences, sexual orientation, user names, credit card types, user conversations, payment logs, email correspondence transcripts, token information, password hashes, IP addresses.
“The fact that a large amount of email content came from popular domains…that offer supplementary services such as cloud-storage and business tools — means that compromised CAM4 users could potentially see huge volumes of personal data including photographs, videos and related business information leaked to hackers — assuming their accounts were eventually hacked via phishing as one example,” wrote Safety Detectives in a blog describing their findings.