Eskom denies its live customer database has been exposed online - but the security specialist who found it disagrees

clock • 2 min read

MongoDB database 'does not belong to Eskom and is not hosted on our network', claims Eskom CIO

South African utility giant Eskom has denied claims made earlier this week that its live customer database - including payment details, such as credit cards - has been exposed on the internet.

Responding to complaints from security specialists in South Africa, the company's acting CIO, Nondumiso Zibi, claimed that Eskom's investigations prove that the database "does not belong to Eskom and is not hosted on our network".

He added: "We have traced it and can confirm that it is hosted in the US. We have managed to trace the company responsible for this server and the database. The company is very co-operative and has since confirmed that the server has been shut down."

The company, he continued, is conducting further investigations to determine whether the data in question is valid and belongs to Eskom customers.

But the security specialist who went public with the alleged compromise, Devin Stokes, described the company's explanation as nonsense - not least because he never provided Eskom with the IP address of the exposed MongoDB database.

"They had live payment records populating the database for electricity customers," he tweeted, pointing out that no-one from the company has bothered to contact him to find out more details about the exposed database.

He added that there are three likely explanations: "They left their database unsecured on an American cloud host, such as Azure or AWS (most likely); or, they got hacked and the data siphoned off (not likely); or, they sold the data to another company (no idea)..."

"I don't understand how your data being on someone else's servers, logging financial transactions through the mobile app in a live fashion is possible. Does that make sense to anyone else or am I crazy?" asked Stokes in response to Eskom's statement.

You may also like
The language of software licencing needs an upgrade, says Percona's Peter Zaitsev

Open Source

Third-way models are proliferating

clock 05 March 2024 • 3 min read
MongoDB confirms exposure of customer data in attack

Hacking

No evidence of exposure to the data stored in MongoDB Atlas cloud, it says

clock 18 December 2023 • 2 min read
Everyone's talking about ... vector search

Search

Vector search suddenly finds itself the spotlight, with database vendors rushing to add it to their capabilities, and startups jostling for funding to get ahead of the game. But what is vector search, and why now? We spoke to three vendors about the new...

clock 05 July 2023 • 7 min read

More on Security

'Gay furry hackers' breach conservative US think tank behind Project 2025

'Gay furry hackers' breach conservative US think tank behind Project 2025

Heritage Foundation calls group "degenerate perverts"

Tom Allen
clock 11 July 2024 • 2 min read
Why 'change' for the UK must include cybersecurity

Why 'change' for the UK must include cybersecurity

Labour needs to to get ahead and demonstrate a commitment to security from the outset

Rick Jones
clock 11 July 2024 • 4 min read
Mammoth Microsoft Patch Tuesday fixes four zero-days, five critical bugs

Mammoth Microsoft Patch Tuesday fixes four zero-days, five critical bugs

142 holes plugged this month

John Leonard
clock 10 July 2024 • 3 min read