Exposed data from more than 93,000 Sitter app users

Security researcher Bob Diachenko discovered a MongoDB instance of 2GB of data, exposed on the Internet and accessible without the need for credentials, that contained personal details of more than 93,000 Sitter app users, whose main functionality is babysitters hiring.

Among the compromised data are encrypted passwords, number of children per family, addresses, phone numbers, user phone book contacts and part credit card numbers.

The discovery was reported on August 14 to the company, which claims to have secured the database that same day and informed all affected users. It is unknown if there were other connections to the database and how long the information was exposed.