Security researcher Chris Vickery discovered an open Rsync server hosting the personal details for at least 200,000 racing fans. The data comes from a now defunct racing forum called DownForce, which closed several years ago. The databases exposed by IndyCar were mostly related to day-to-day operations, including employee login credentials. However, Vickery also discovered the DownForce backup, which contains a user’s first and last name, date of birth, gender, mailing address, password hash, and the corresponding answer.”]
Source: https://www.csoonline.com/article/3163212/details-on-200000-racing-fans-exposed-by-indycar.html