A huge email marketing organization called River City Media failed to safeguard backups of its database of 1.34 billion email accounts, resulting in all that user information being available for anyone to see, informs http://fortune.com.
Chris Vickery, a MacKeeper security researcher, wrote Monday that he discovered the unsecured user data in January and worked with security organization Spamhaus and cybersecurity news site CSO Online to further investigate the data breach.
Vickery said he traced the “leaky files” to the spamming operation, which he said “masquerades as a legitimate marketing firm while, per their own documentation, being responsible for up to a billion daily email sends.”
He wrote that the River City Media was able to obtain “email accounts, full names, IP addresses, and often physical address” from over a billion people through its spam operation that involves emails promising “credit checks, education opportunities, and sweepstakes.”
The database of user information is so big, Vickery wrote, “chances are that you, or at least someone you know, is affected.”
The publication said that the researchers reported the data breach and spammers to law enforcement, but that the researchers “cannot discuss those elements, because the agencies involved cannot comment on pending or ongoing investigations.”