ADVERTISEMENT

Alarming cyber mistake exposes passports, bills, and salary slips

The digital loan provider made everything from passports to utility bills available online, revealing loan seekers’ personal information to the public.

vivifi

Image by Cybernews

Paulina Okunytė
Paulina Okunytė Senior Journalist
Feb 20, 2025 Updated: 8 December 2025 2 min read
Vivifi data leak
  • Passports
  • National ID cards
  • Driver’s licenses
  • Voter IDs
  • Utility bills
  • Lease/rental agreements
  • Bank statements
  • Salary slips
  • Employment letters
  • Taxpayer Identification – PAN cards
  • Vivifi’s loan agreements
  • Communication with clients

Loan seekers are at risk

ADVERTISEMENT
Vivifi data leak
Ernestas Naprys Paulina Okunyte Gintaras Radauskas vilius
Don’t miss our latest stories on Google News
Add us as your Preferred Source on Google.
  • Change the access controls to restrict public access and secure the bucket.
  • Update permissions to ensure that only authorized users or services have the necessary access.
  • Monitor retrospectively access logs to assess whether unauthorized actors have accessed the bucket.
  • Enable server-side encryption to protect data at rest.
  • Use AWS Key Management Service (KMS) to manage encryption keys securely.
  • Implement SSL/TLS for data in transit to ensure secure communication.
  • Consider implementing security best practices, including regular audits, automated security checks, and employee training.

  • Leak discovered: November 28th, 2024
  • Initial disclosure: January 7th, 2024
  • Closed: January 16th, 2024
ADVERTISEMENT