Insurance marketing website MedicareSupplement.com has exposed personal data that 5 million customers had submitted to the website in order to obtain insurance quotes.
A security researcher found the data on an unprotected MongoDB server. The researcher warns that leaky servers not only put affected users at risk of identify fraud and other cybercrimes, but that threat actors can also deploy ransomware and other malware onto them.