"How a port misconfiguration exposed critical infrastructure data"

UpGaurd researchers have discovered an open port in which hackers could use to exfiltrate data from the servers of Power Quality Engineering (PQE), a Texas-based firm. The discovery was made as Chris Vickery, UpGaurd Director of Cyber Risk Research, was able to extract 205 GB of exposed data from PQE's servers through a misconfigured open port configured for public access and used rsync server synchronization. Data exfiltrated from PQE’s servers by Vicker, includes documents such as reports consisting of electrical infrastructure data belonging to customer facilities. This article further discusses the details of this discovery and the importance of closing security gaps.

Help Net Security reports "How a port misconfiguration exposed critical infrastructure data"