It is clarified that the leak occurred as a result of an error in the database configuration on one of the servers.
Presumably, it belongs to the microfinance company GreenMoney.
Access to the database with confidential information, namely passport data of borrowers, phone numbers, addresses, credit information, was closed after an independent cybersecurity researcher Bob Dyachenko contacted the Bureau of Credit Histories.
According to the CEO of GreenMoney Andrei Lutsyk, an audit is being conducted on the fact of what happened.
On October 7, Sberbank revealed the fact of leakage of customer credit card data: 5 thousand accounts were sold to a criminal group in the shadow Internet.
Later, the bank called for toughening the responsibility for the theft of personal data of customers.
The head of the computer security association, Roman Romachev, commenting on the issue of personal data leakage in an interview with NSN, said that "this is a problem not only in Russia, data is leaking all over the world."