An open and unprotected Elasticsearch cluster with 976 millions of records appeared to be part of Honda North America infrastructure, exposed online to anyone with a web browser. An estimated 1 million records* in the database contained information about Honda owners and their vehicles. No password or other authentication was needed to access the records, which included names, contact details, and vehicle information. Honda estimates the number of unique consumer related records in this database to be around 26,000. The server on which the database resides was misconfigured on October 21, 2019.”]
Source: https://securitydiscovery.com/honda-exposes-vehicle-owner-records-on-the-web/

