Misconfigured UN Database Exposes 228GB of Gender Violence Victims’ Data

A cybersecurity researcher discovered a massive data leak exposing over 115,000 sensitive documents associated with the UN Trust Fund to End Violence against Women. The leaked data includes personal information, financial records, and victim testimonies, posing a serious risk to privacy and security.

Cybersecurity researcher Jeremiah Fowler discovered a misconfigured database affecting the United Nations (UN) Trust Fund to End Violence against Women. According to Fowler’s investigation, reported shared with Hackread.com, the exposed database was unsecured and unprotected by a password or any other security authentication, making it easily accessible to anyone with an internet connection.

The database contained over 115,000 records and 228 GB of sensitive data, including financial reports, staff documents, email addresses, contracts, and personal information of victims and charity workers in PDF, .XML, .JPG, and PNG formats.

The leaked documents revealed a wide range of confidential information, such as:

• Staff information: Names ...