EazyDiner.com (sample)

In mid-2020 a significant data breach occurred at EazyDiner an Indian restaurant booking platform. The incident involved an unprotected database on a cloud server that exposed sensitive customer information to the public internet. Security researchers discovered that the exposed data included personal details of millions of users. The breach was primarily caused by a misconfigured Elasticsearch cluster which allowed unauthorized access without authentication. This exposure put users at risk of phishing and identity theft as it contained detailed profiles of their dining habits and contact information.