Mexican fintech company Miio exposed millions of files of sensitive customer data

• 2.9 million files from fintech firm Miio have been found exposed online
• Researchers say the information has been unguarded for months
• The company is yet to respond to the disclosure notice

Cybersecurity researchers have claimed financial technology firm Miio, which offers mobile telecoms and financial services to customers in Mexico, has suffered a huge data leak, exposing up to three million Know Your Customer (KYC) files.

Findings from Cybernews say the files were reportedly unguarded for at least several months, and contained files dating back to 2017, when the company was started. This strongly suggests that all Miio customers were impacted, with 2.9 million scans of various KYC documents found, including passports and IDs, driver’s licenses, and customer pictures.

There’s no evidence yet that malicious actors accessed the data, but since researchers were able to access it, it's probable others have ...