In a significant discovery, a security researcher has uncovered two separate instances of database exposures that were publicly accessible and lacked password protection, affecting Australian food company Patties Foods Limited (PFL).
The first exposure involved an unsecured logging server containing 496,296 records. These logs detailed a wide range of information, including system errors, warnings, indexing operations, search queries, cluster health status, and other diagnostic data. Alarmingly, the logs also included internal, customer, and vendor emails, highlighting a severe breach of privacy and data protection protocols.
The logging records further revealed a second exposure: a separate cloud storage database containing 25,800 invoices and distribution records in both .pdf and .xls formats. These documents provided detailed financial and logistical information about Patties Foods’ operations.
Patties Foods Limited, established in 1966, is a leading Australian manufacturer and supplier of various edible products, including meat pies, sausage rolls, pastries, desserts, and frozen fruits. The company’s reputation for quality and trust has made this data exposure particularly concerning for stakeholders.
The database was managed by Provenio.ai, a service provider specializing in AI-powered productivity solutions for the supply chain back-office. Provenio.ai services numerous well-known Australian companies, further amplifying the potential impact of this exposure.
Upon notification of the vulnerability, Provenio.ai acknowledged the issue but refuted claims that the exposure constituted a data breach. It appears that the vulnerability was real, no unauthorized access or malicious use of the data has been detected. Measures were taken to secure the affected databases.
Despite this assertion, the exposure of sensitive internal, customer, and vendor information represents a critical lapse in data security. The incident underscores the importance of stringent data protection measures, particularly for companies handling large volumes of sensitive information. This incident serves as a stark reminder of the vulnerabilities that exist within digital infrastructures and the need for continuous vigilance in data security practices.
About Patties Foods Limited
Founded in 1966, Patties Foods Limited is a premier Australian food company known for its wide range of products, including meat pies, sausage rolls, pastries, desserts, and frozen fruits. With a strong presence in the food manufacturing industry, Patties Foods is committed to delivering high-quality products to consumers across Australia.
About Provenio.ai
Provenio.ai provides AI-powered productivity solutions tailored for the supply chain back-office. Serving many prominent Australian companies, Provenio.ai focuses on enhancing operational efficiency and accuracy through advanced AI technologies.
The Patties Foods Data Breach raises critical questions about data security practices and highlights the need for robust safeguards to protect sensitive information in an increasingly digital world.