US Internet Securence division leaked emails
2024-02-14 18:16:15.69813+01 by Dan Lyke 0 comments
Holy crap... U.S. Internet Leaked Years of Internal, Customer Emails
The Minnesota-based Internet provider U.S. Internet Corp. has a business unit called Securence, which specializes in providing filtered, secure email services to businesses, educational institutions and government agencies worldwide. But until it was notified last week, U.S. Internet was publishing more than a decade’s worth of its internal email — and that of thousands of Securence clients — in plain text out on the Internet and just a click away for anyone with a Web browser.
The money quote...
“The feedback from my team was a issue with the Ansible playbook that controls the Nginx configuration for our IMAP servers,” Carter said...
As Brian Krebs @briankrebs@infosec.exchange observed:
Also, I'm still struggling to understand why they put Nginx in front of their IMAP servers. That's just one example of their reply that made no sense.
All I had to read was "Ansible"...