Massive global data breach sees over a billion records exposed - here's what we know so far

• IDMerit kept an unsecured database of over three billion records
• Experts find database and manage to get it locked down
• Personal info exposed, but affected users may be low in number

Experts have revealed IDMerit, an AI-powered digital identity verification solutions provider, kept an enormous database filled with sensitive customer information unlocked and easily accessible on the public internet.

In total, more than three billion records were discovered by cybersecurity researchers from Cybernews and eventually locked down.

The team said it found an open MongoDB database weighing more than a terabyte, and included records such as full names, addresses, post codes, dates of birth, national IDs, phone numbers, gender, email addresses, telco metadata, and breach status and social profile annotations.