ADVERTISEMENT

Saudi Ministry exposed sensitive data for 15 months

Saudi Arabia’s Ministry of Industry and Mineral Resources (MIM) had an environment file exposed, opening up sensitive details for anybody willing to take them. The Cybernews research team believes that the sensitive data was accessible for 15 months.

MIM data leak

Image by Cybernews.

Vilius Petkauskas
Vilius Petkauskas Deputy Editor
Jan 8, 2024 Updated: 9 January 2024 2 min read

What MIM data was exposed?

ADVERTISEMENT
Data sample
Sample of the leaked data.

Risky business

  • Assess the overall security of the infrastructure, including the database server. Identify any vulnerabilities or misconfigurations that may have contributed to the credential leak and take steps to address them.
  • Evaluate existing security measures and consider implementing additional safeguards such as network segmentation, intrusion detection systems, encryption of sensitive data, and regular security audits.
  • Change the passwords for the affected MySQL and Redis databases and email accounts immediately and revoke any compromised credentials.
  • Implement robust, unique passwords and multi-factor authentication (MFA).
  • Implement robust monitoring systems to detect and respond to any abnormal or unauthorized activity within government email systems. Set up alerts for unusual login attempts, email forwarding or mass deletions.
ADVERTISEMENT