NEWS
NEWS
NEWS
PG&E leaves database exposed
An electric company was in for a shock when a database containing sensitive information was found online. The database, belonging to (PG&E), was part of an asset management system, containing information on a wide array of devices belonging to the company, although PG&E denies the authenticity of the data.
Security Week reports that the PG&E database was publically available online, and could have been accessed by anyone without authentication. The system contained information on around 47,000 devices, including computers, servers, and virtual machines. Among the available data, one could find IP addresses, MAC addresses, hostnames, and of course, passwords; many passwords were hashed, but others were stored in clear text.
The exposed database was discovered through the investigations of Chris Vickery at MacKeeper’s Security Watch. Upon its discovery, he alerted PG&E, which insisted that the database was entirely fake. However, Vickery is skeptical of the claim, noting that “fictitious databases do not generally have areas specifically marked ‘development,’ ‘production,’ and ‘enterprise.’ Fictitious databases do not generally have over 688,000 unique log record entries. This database did.”
Whether or not it was a fake database, it has already been taken down, following Vickery reporting it to PG&E. However, that would not stop anyone who managed to access it earlier from copying all the data.
PG&E has not yet notified customers, but Vickery is trying to reach out to the Department of Homeland Security to determine if the database is legitimate and take any appropriate actions.
photo credit: No way home via photopin (license)
A message from John Furrier, co-founder of SiliconANGLE:
Support our open free content by sharing and engaging with our content and community.
Join theCUBE Alumni Trust Network
Where Technology Leaders Connect, Share Intelligence & Create Opportunities
11.4k+
CUBE Alumni Network
C-level and Technical
Domain Experts
15M+
theCUBE
Viewers
Connect with 11,413+ industry leaders from our network of tech and business leaders forming a unique trusted network effect.
SiliconANGLE Media is a recognized leader in digital media innovation serving innovative audiences and brands, bringing together cutting-edge technology, influential content, strategic insights and real-time audience engagement. As the parent company of SiliconANGLE, theCUBE Network, theCUBE Research, CUBE365, theCUBE AI and theCUBE SuperStudios — such as those established in Silicon Valley and the New York Stock Exchange (NYSE) — SiliconANGLE Media operates at the intersection of media, technology, and AI. .
Founded by tech visionaries John Furrier and Dave Vellante, SiliconANGLE Media has built a powerful ecosystem of industry-leading digital media brands, with a reach of 15+ million elite tech professionals. The company’s new, proprietary theCUBE AI Video cloud is breaking ground in audience interaction, leveraging theCUBEai.com neural network to help technology companies make data-driven decisions and stay at the forefront of industry conversations.
