On November 3, Bob Diachenko, Director of Cyber Risk Research at Hacken, discovered a publicly accessible MongoDB that contained the personal information of approximately 21,612 Kars4Kids donors and customers. Exposed information included email addresses, as well as credentials that could be used to access additional data such as donation receipts, home addresses, phone numbers, and vacation vouchers; super administrator login and password details were also accessible. According to a representative from the company, the database has since been secured and affected individuals have been notified.

Data BreachNJCCICData Breach