ADVERTISEMENT

Photo firm exposes 43K American uni students

A US-based graduation photo maker exposed the personal details of thousands of students from hundreds of American universities, the Cybernews research team has discovered.

Students details exposed

Image by Cybernews.

Vilius Petkauskas
Vilius Petkauskas Deputy Editor
Jun 3, 2024 Updated: 8 December 2025 2 min read
Sample data
Sample of the leaked data. Image by Cybernews.
ADVERTISEMENT

Dangers of leaking student data

  • Retrospectively monitor access logs to assess whether the bucket has been accessed by unauthorized actors.
  • Update the permissions and access controls on the impacted Azure blob right away to prevent unwanted access. Modify the configuration to guarantee that access is granted only to the necessary users or services.
  • Check for and remove unnecessary public access configurations. Ensure that the blob is not publicly accessible unless absolutely necessary.
  • Conduct a thorough audit of the access controls for the Azure blob. Review Azure Role-Based Access Control (RBAC) settings and ensure that the principle of least privilege is followed.
  • Enhance monitoring and logging for the Azure blob to track access and detect any suspicious activities. Configure Azure Storage Analytics to capture relevant logs.
ADVERTISEMENT