A WWE (World Wrestling Entertainment) database leak from its WWE Network OTT service exposed three million users home and email addresses, as well as a host of personal information.
Kromtech security firm’s Bob Dyachenko told Forbes that he discovered an unprotected database that was open to anyone in plain text who knew which web address to search.
WWE responded to the story by issuing the following statement. “Although no credit card or password information was included, and therefore not at risk, WWE is investigating a vulnerability of a database housed on Amazon Web Services (AWS), which has now been secured. WWE utilises leading cybersecurity firms Smartronix and Praetorian to manage data infrastructure and cybersecurity and to conduct regular security audits on AWS. We are currently working with Amazon Web Services, Smartronix and Praetorian to ensure the ongoing security of our customer information.”