Text message database reportedly leaked password resets
November 15, 2018 / STEVEN MUSIL
A massive database managing millions of text messages was reportedly discovered unsecured, exposing sensitive information such as password resets and two-factor security codes. Vovox, a San Diego-based communications company maintained the server, which was left unprotected by password, offering anyone knowing where to look a real-time glimpse at a steady stream of text messages, TechCrunch reported Thursday. The unsecured server was discovered on Shodan, a search engine for publicly available devices and databases, TechCrunch reported. The database appeared to contain more than 26 million text messages, each containing the message and tagged with the recipient's cell phone number, TechCrunch reported. Among the information reportedly discovered were security codes sent by Fidelity Investments, a temporary banking password sent by a Silicon Valley credit union and an Amazon tracking notification with UPS tracking information.