<ul><li>Collectibles.com, a major collectible cards marketplace, has been leaking sensitive information on hundreds of thousands of users, exposing them to risk of identity theft, wire fraud, phishing, and more, experts have claimed.</li><li>Cybernews discovered and reported a non-password-protected Elasticsearch instance containing a 300GB cluster of valuable user data, counting more than 870,000 records.</li><li>The exposed data includes users' full names, email addresses, profile picture links, user account details, collectible card sales, and transactional data.</li><li>The instance was closed ten days later, but it is unknown for how long it remained open and if any malicious actors accessed the data.</li></ul>

Top collectibles site leaks personal data of nearly a million users

Discover more