SAP software update mistakenly assigned higher-level privileges to some users in New Zealands firearms buy-back notification database. Names, addresses, phone numbers, firearms license numbers and bank account details were exposed. SAP says it locked all user profiles on the system except for its consultants who were investigating. The database enables gun owners to notify police of firearms they own and register for compensation under a buy back program. Police say the database will remain offline until we can be reassured by our vendor that the platform is secure”]
Source: https://www.cuinfosecurity.com/sap-software-update-exposed-new-zealand-firearms-register-a-13464