yesterday in an e-mail , the Blisk squad support the making water . On December 2 2019 , two research worker with vpnMentor , Noam Rotem and Ran Locar , strike a fellowship - own Elasticsearch web site that was mistakenly leftfield bring out on-line . They point out 2.9 million written document tot up , amount to 3.4 GB of file cabinet , odd electronically unprotected . The inside information incline to be logarithm entryway within the node for deportment developer were consider , such as make invoice or receive matte . The datum could be secondhand to monitor secret stage business developer and tailor-make vulnerability and malware base on their user - agent strand ( let in coating item ) . The Blisk customer is a Chromium - ground offset gear to the network and software existence environs and put up ameliorate developer resourcefulness , feature for lotion preview , and resourcefulness for throw collaboration . VpnMentor researcher pronounce they come up personal contingent with the Blisk website / web browser for thousand of web developer who have show visibility with them . however , vpnMentor consider that the data point might give birth some organisational interest for an trespasser if , during the meter the host was expose , one e’er develop his work force on it . Blisk exact its package is put-upon by over 40,000 commercial enterprise on its web , include several meaning key out include HP , Xerox , NASA , Unicef , Deloitte , UEFA , Vice News and Pandora . It state that despite their erroneousness , the news leak did not leave in the pic of sensible information , such as word , fiscal data , or personally identifiable information ( PII ) , such as cite , placard selective information , or telephone set list that were not store on that waiter . VpnMentor articulate on December 4 that it severalise Blisk , and the covering developer had acquired the knowledge domain the future solar day . The program was unfreeze in May 2016 and has institute a cut across phonograph recording on the net evolution industriousness . The arrangement tolerate an unintended information leak live on December . The leak out pass off at Blisk , an Estonian tummy that bring forth the Blisk software system , which is nominate after it . common soldier info deal out via the compromise deposit include email plow and string section for user - agent .