According to Infosecurity, a misconfigured Elasticsearch server exposed the personally identifiable information (PII) of at least one million users of a Chineserun VPN provider.
The researchers discovered a 100GB trove containing 500 million records, including personal information on one million users and system data on 300,000 clients.