EY’s Mega Blunder: 4TB of Secrets Leaked in Epic Cloud Oops!

Neo Security discovered EY’s 4TB SQL backup exposed online, like a vault’s master blueprint left with a “free to a good home” sign. This oversight, a classic cloud bucket misconfiguration, revealed API keys and passwords. It’s a reminder that one wrong click can turn data security into an unintentional comedy of errors.

3P
Published: October 29, 2025 4:27 pmAdded: October 29, 2025 at 9:58 amAssembled by: The Editor
Pro Dashboard

Hot Take:

Well, EY might need to consider changing its name to “Oops, Yikes!” after this little slip-up. Nothing like leaving 4TB of secrets out in the open, like a piñata filled with trade secrets at a hacker’s birthday party. Good thing the lead researcher had the decency to just peek and not poke!

Key Points:

  • A Dutch cybersecurity firm discovered a 4TB+ SQL Server backup file from EY exposed on the web.
  • The file contained sensitive data like API keys, session tokens, and user credentials.
  • The exposure was due to a classic cloud bucket misconfiguration.
  • Neo Security emphasized the ease of such leaks due to cloud platform convenience over security.
  • EY responded professionally, resolving the issue within a week.

Membership Required

 You must be a member to access this content.

View Membership Levels
Already a member? Log in here
The Nimble Nerd
powered by the NSA, er,  GDPR Cookie Compliance
Confessional Booth of Our Digital Sins

Okay, deep breath, let's get this over with. In the grand act of digital self-sabotage, we've littered this site with cookies. Yep, we did that. Why? So your highness can have a 'premium' experience or whatever. These traitorous cookies hide in your browser, eagerly waiting to welcome you back like a guilty dog that's just chewed your favorite shoe. And, if that's not enough, they also tattle on which parts of our sad little corner of the web you obsess over. Feels dirty, doesn't it?