It contacted Clubillion’s developers on March 23 and AWS on March 31. The vpnMentor research team initially discovered the problem on March 19, finding the database hosted on Amazon Web Services (AWS) during the course of working on a web mapping project. According to a Tuesday report from vpnMentor, the social casino app Clubillion exposed approximately 200 million user records per day simply because of lax security. One of the world’s most popular social gambling mobile apps left a database unsecured and unencrypted, allowing customers’ personal data to be accessible to anyone who knew where to look.
