What happened with the Netcore Cloud data exposure?

Cybersecurity researcher Jeremiah Fowler discovered an unencrypted publicly available database containing approximately 40 billion records totaling 13.41 terabytes. The database belongs to Netcore Cloud Pvt. Ltd, a Mumbai-based marketing automation platform. The exposed database was not password-protected and could be accessed by anyone on the internet.

What is Netcore Cloud?

Netcore Cloud Pvt. Ltd is a Mumbai-based marketing automation platform that provides outbound marketing services to approximately 6,500 brands across 40 countries. The company serves clients across various sectors including ecommerce, retail, banking and financial services, media and entertainment, and travel.

How much data was exposed in the Netcore Cloud incident?

The exposed database contained approximately 40 billion records totaling 13.41 terabytes of data. This represents one of the largest data exposures by record count, containing mail log records, bank notifications, employment-related messages, account verification emails, marketing messages, and internal infrastructure details.

What type of information was exposed in the Netcore Cloud database?

The exposed data includes email addresses (both personal and professional), mail delivery records and log files, bank notification details with credits and debts information, partial account numbers, IP addresses and SMTP details, message subjects and content, healthcare notifications, employment-related messages, account verification information, server names and infrastructure details, and internal service access data. Numerous records were marked as confidential.

Was the Netcore Cloud database encrypted or password-protected?

No, the database was unencrypted and publicly available without any password protection or authentication requirements. This meant anyone on the internet could access the 40 billion records containing sensitive information.

How long was the Netcore Cloud database exposed?

It is not clear how long the database was exposed prior to discovery. The duration of exposure and whether unauthorized parties accessed the data before Jeremiah Fowler discovered it remains unknown.

Has the Netcore Cloud database been secured?

Yes, after Jeremiah Fowler sent a responsible disclosure notice to Netcore Cloud, the database was restricted from public access the same day. However, it remains unclear how long it was exposed before discovery or if unauthorized parties accessed it during that time.

What sensitive information was found in the Netcore Cloud database?

Within the limited sampling conducted, Fowler found healthcare notifications and banking activity notices, some containing partial account numbers, IP addresses, and SMTP details. The database also contained bank notification details with credits and debts information, employment-related messages, account verification emails, and numerous records marked as confidential. It also appeared to contain information about internal services and access data marked as production, referencing databases and backend update servers.

What types of companies were affected by the Netcore Cloud exposure?

The exposure potentially affected customers of approximately 6,500 brands that use Netcore Cloud's services. These brands span various sectors including ecommerce, retail, banking and financial services, media and entertainment, and travel across 40 countries worldwide.

Were there any indications of unauthorized access to the Netcore Cloud database?

It is not clear whether unauthorized parties accessed the database before it was discovered and secured. The duration of exposure prior to discovery is unknown, making it impossible to determine if malicious actors accessed the 40 billion exposed records.

What should individuals do if they may have been affected by the Netcore Cloud exposure?

Individuals who may have been affected should monitor their email accounts for suspicious activity, be alert for phishing attempts that may use the exposed information, monitor bank and financial accounts for unauthorized activity if they received banking notifications through services using Netcore Cloud, and be cautious of targeted scams that may reference personal information that was exposed. Given the exposure included partial account numbers and banking information, affected individuals should be particularly vigilant about financial account security.

Incident

Marketing and email data platform Netcore Cloud leaks over 40 billion email marketing records

Q: Who discovered the Netcore Cloud data exposure?

The exposed database was discovered by cybersecurity researcher Jeremiah Fowler. Fowler immediately sent a responsible disclosure notice to Netcore Cloud, and the database was restricted from public access the same day.

published: Oct. 16, 2025

Learn More

Cybersecurity researcher Jeremiah Fowler discovered an unencrypted publicly available database containing approximately 40 billion (with a B) records totaling 13.41 TB.

The database belongs to Netcore Cloud Pvt. Ltd, a Mumbai-based marketing automation platform that provides outbound marketing services to approximately 6,500 brands across 40 countries.

The exposed database contained mail log records including bank notifications, employment-related messages, account verification emails, and marketing messages. Within the limited sampling conducted, Fowler found healthcare notifications and banking activity notices, some containing partial account numbers, IP addresses, and SMTP details. Numerous records were marked as confidential. The database also appeared to contain information about internal services and access data marked as "production," referencing databases and backend update servers.

Exposed data includes:

Email addresses (both personal and professional)
Mail delivery records and log files
Bank notification details with credits and debts information
Partial account numbers
IP addresses and SMTP details
Message subjects and content
Healthcare notifications
Employment-related messages
Account verification information
Server names and infrastructure details
Internal service access data

The exact number of affected individuals has not been disclosed. The number of affected individuals is likely in the millions, given that Netcore Cloud serves 6,500 brands across sectors including ecommerce, retail, banking and financial services, media and entertainment, and travel.

Fowler immediately sent a responsible disclosure notice to Netcore Cloud, and the database was restricted from public access the same day. It's not clear how long the database was exposed prior to discovery or whether unauthorized parties accessed it.

Marketing and email data platform Netcore Cloud leaks over 40 billion email marketing records

Read More
Cybersecurity company Rubrik reports data breach, rotates authentication …
Forces Penpals dating / social networking service for …
Medibase Group reports data breach exposing Staten Island …
Hackers claim breach of Gravy Analytics
Microsoft AI research team leaks 38TB of data