Customers of municipal bond insurance company MBIA had their information exposed due to a server misconfiguration issue. Most of the information had been indexed by search engines, including a page with administrative credentials that attackers could have used to get their hands on data that wasn’t available by searching the web. The site contained customer data from Cutwater Asset Management, a fixed-income unit of BNY Mellon Corp. It has $23 billion of assets under management and clients include state and local governments and pension funds.”]
Source: https://www.darkreading.com/advanced-threats/mbia-leaves-customer-data-exposed-on-web