More than 200 million records containing a wide range of property-related information on US residents were left exposed on a database that was accessible on the web without requiring any password or authentication.
The exposed data — a mix of personal and demographic details — included the name, address, email address, age, gender, ethnicity, employment, credit rating, investment preferences, income, net worth, and property information, such as:
Mortgage amount, rate, type, and lender
Refinance amount, rate, type, and lender
Number of beds and bathrooms
Tax assessment information