Australian food manufacturer Patties Foods leaks data through exposed Elastic DB
Learn More
Australian meat pie, sausage roll, and pastie maker Patties Food Group has experienced a data leak, exposing thousands of documents online. The leak was discovered by cybersecurity researcher Jeremiah Fowler and it exposed two separate databases: one containing 496,296 technical records and the other holding over 25,000 company invoices and distribution records.
The databases were managed by Provenio.ai, a Sydney-based start-up providing AI-powered productivity solutions. The data exposure was due to a misconfiguration in an Elastic Search database.
Exposed data includes:
- System errors and diagnostic data
- Invoices
- Orders
- Banking information, including:
- Account numbers
- Invoice amounts
- Supplier details
- Employee names
The number of affected individuals is not disclosed.
Provenio.ai restricted access to the databases upon notification and engaged Cyberknox, a NSW government-approved cybersecurity firm, to conduct a forensic audit.
Provenio.ai confirmed the vulnerability was contained and removed within hours. Patties Foods was informed by Provenio.ai and stated that there was no evidence of malicious access to their information.
Patties Foods emphasized no breach to its systems and is working with Provenio.ai to secure data.
