Zotac may have been exposing private customer data straight into Google search results

Sead Fadilpašić

10 July 2024 at 3:44 pm·2-min read

Computer hardware manufacturer Zotac misconfigured a database containing sensitive customer data, resulting in that information being leaked on the wider web.

Zotac is best known for its graphics cards and mini PCs, with its product lineup including various NVIDIA GeForce graphics cards, ZBOX mini PCs, various motherboards, SSDs, and other computer accessories.

As reported by BleepingComputer, the company’s American subsidiary, Zotac USA, misconfigured the permissions for a folder containing return merchandise authorization (RMA) requests, and related documents. As a result, Google indexed the documents, which made them searchable and easily discovered through the Google search engine results pages.

Changing the process

Some details are missing from the report, namely how many people were affected, and for how long the database remained open. We do know that the company was leaking people’s names, invoices, addresses, request details, and contact information.

The mishap was first spotted by a viewer of the GamersNexus YouTube channel, after which the company escalated the issue with Zotac. The database has since been locked down. While Google still returns some data on its search engine results pages, those links can no longer be opened by unauthorized visitors.

The way Zotac accepts RMA requests has since been changed. Instead of having an upload button on the RMA portal, through which customers were able to make requests, the company has now asked them to use email.

Misconfigured databases continue to be one of the biggest reasons for data leaks and spills. Companies of all sizes, in all kinds of industries, are regularly making headlines for keeping databases, filled with sensitive customer data, unlocked and available for anyone to see.

Amazon Prime Video, Toyota, BMW, Ecco, Indian government, Sega, those are just some of the companies that were recently seen making the same costly mistake.

More from TechRadar Pro

Organizations keep making data protection mistakes—what this means for you
Here's a list of the best firewalls today
These are the best endpoint protection tools right now

Malay Mail
Inside Scoop bids goodbye to Pei Pa Koa flavour after Health Ministry weighs in
KUALA LUMPUR, July 31 — The Pei Pa Koa flavour created by local ice-cream chain Inside Scoop is no longer available for...
Malay Mail
Bersatu asks court to junk Labuan MP’s suit seeking compensation after getting sacked
KUALA LUMPUR, Aug 1 — Parti Pribumi Bersatu Malaysia has applied to the High Court to strike out Labuan MP Datuk Suhaili...
The Telegraph
Microsoft plunges as Big Tech sell-off deepens
Microsoft shares have fallen heavily as the software giant reported disappointing results that deepened investors’ fears about the artificial intelligence boom.
The Independent
Gina Carano calls on Pedro Pascal and Bear Grylls to testify in her Mandalorian lawsuit
Carano is suing Disney and Lucasfilm after she was fired from the Star Wars TV spin-off in 2021 over her controversial social media posts
Sky News
'Worst' airlines for customer service named by consumer group - but firms say survey is 'misleading'
Wizz Air has been named the worst performing airline for customer service by a leading consumer group. Wizz Air received a net satisfaction score of +13. More than half of those surveyed said they had experienced at least one problem with the carrier's customer services, with a fifth saying the company never replied to their email.
Yahoo Finance
Wage growth drops for job switchers amid labor market cooldown
The gap between wage growth for workers who changed jobs and those who stayed in theirs narrowed further in July.
CoinDesk
California DMV Puts 42M Car Titles on the Avalanche Network in Digitization Push
The service, developed by Oxhead Alpha, will let users transfer vehicle titles in minutes without going to an office versus the two weeks in the traditional system.
Zacks
Hewlett Packard (HPE) Falls 10% in a Month: Should You Buy the Dip?
Hewlett Packard's (HPE) focus on AI, cloud and hybrid solutions, combined with its strategic acquisition of Juniper Networks and appealing valuation, makes it a compelling investment choice.
Zacks
AMD Q2 Earnings Beat Estimates, Shares Up on Strong Q3 View
AMD's second-quarter 2024 results reflect robust Client and Data Center revenues, offsetting weakness in the Gaming and Embedded segments.
Yahoo Finance
Job openings dip slightly in June amid signs of 'turbulence' in labor market
The June JOLTS report is the latest data displaying a labor market that has begun to show some signs of cooling.
Reuters
CrowdStrike is sued by shareholders over huge software outage
Shareholders sue CrowdStrike
AFP News
Weak yen helps Toyota compensate for Japan problems
Toyota reported a small rise in net profits on Thursday as a weak yen and cost cuts helped the Japanese auto giant overcome a drop in production and sales in its home market.Toyota said the rise in profit was "despite a decrease in production and sales volume in Japan, due to the effects of foreign exchange rates and cost reduction efforts".
Malay Mail
PM Anwar calls Meta ‘rude and insulting’ to Palestinians after his Facebook tribute to slain Hamas leader Ismail Haniyeh goes missing
KUALA LUMPUR, Aug 1 — Prime Minister Anwar Ibrahim today denounced Facebook’s parent company Meta for removing his tribu...
HuffPost
Critics Stunned By Donald Trump’s ‘Heartless’ Punch Line About Man Killed At His Rally
The Republican nominee was slammed as horrible, unkind and a “self-centered sadistic monster” over the line.
Cinema Online
Michelle Yeoh celebrates first wedding anniversary with husband Jean Todt
The couple tied the knot in July last year after 19 years of relationship
The Independent
China’s gymnastics nightmare continues on second round of Olympics heartbreak
China’s Zhang Boheng was made to regret key errors as gold slipped away, with Japan’s Oka Shinnosuke a surprise all-around champion
People
The Real Reason Prince Harry and King Charles Are No Longer Speaking: 'Harry's Calls Go Unanswered' (Exclusive)
"Harry is frightened and feels the only person who can do anything about it is his father," a royal insider tells PEOPLE
HuffPost
'Daily Show' Exposes 'Very Clear' Problem Trump Is Having With Kamala Harris
Ronny Chieng explains what the former president's attacks really mean.
Malay Mail
Malaysia’s population up to 34.1 million in 2024, but govt data shows slight uptick in foreign composition
KUALA LUMPUR, July 31 — Malaysia’s total population now numbers 34.1 million, according to data from the Department of S...
The Telegraph
Liverpool beat Arsenal in Philadelphia – four things we learnt
By Chris Bascombe and Sam Dean

Changing the process

More from TechRadar Pro

Latest stories