A huge infringement of information revealed delicate information from almost every person in Ecuador. An approximately 20 million individuals were affected by the violation— Ecuador has a population of about 17 million as a reference. It revealed information on 6.7 million minors, as well as the chairman of the country and founder of WikiLeaks, Julian Assange, who was given political asylum by Ecuador in 2012, according to ZDNet.
Security business vpnMentor found the violation on an Ecuadorian business Novaestrat-owned Miami-based Elasticsearch server. The information appears to have originated from various sources, according to vpnMentor, including Ecuadorian government registries, an Ecuadorian national bank, and an automotive association.
It involves everything from names, birth dates and contact data to national identification numbers, identity figures of taxpayers, driving documents and balance of bank accounts. It even involves comprehensive data on family members of people.
Ecuador's Computer Emergency Response Team was notified by vpnMentor and the violation was completed on 11 September. Novaestrat's manager has allegedly been arrested by Ecuador, and Telecommunications Minister of the country said it could be prosecuted as a criminal offence.
This violation could have long-lasting ramifications, as vpnMentor points out. If poor performers acquired the information, scams, phishing attacks, identification of theft and fraud could be used. It might also have an effect on Ecuadorian firms.
Ecuador is not the only nation that has been struck by such a violation. A Bulgarian tax agency may have released information on an approximately 5 million of the 7 million inhabitants of the country earlier this year.
And in the US, in the first quarter of 2019 alone, 32 million patient documents were violated. While the range and amount of detail in this data leak is worrying, how prevalent breaches such as this have become is perhaps more unsettling.