SoftwareProjects affiliate platform leaks 200GB of data
Learn More
Cybersecurity researcher Jeremiah Fowler discovered and reported a significant data breach at the affiliate sales platform SoftwareProjects, where nearly 200GB of customer and affiliate data, including sensitive information, was publicly exposed. The unsecured database comprised over 257,000 records including:
- credit card images,
- identification documents,
- full names,
- addresses,
- birthdates,
- license numbers
- invoices,
- refunds,
- affiliate payouts,
- sales data
The database also contained a variety of other files, including invoices with customer PII, bank transfer records, and earnings reports with ABA account numbers of affiliates.
The database was labeled as CDN, typically indicating a content delivery network used for storing documents to enhance web application performance. After Fowler's report, SoftwareProjects disabled the PII data from public access.
Customers and affiliates of SoftwareProjects are advised to monitor their accounts for unauthorized activity, replace bank cards and consider identity theft protection services.
