X

The Tunefab audio converter just exposed its users' data

Featured image for The Tunefab audio converter just exposed its users' data

There are some of us who just miss the feeling of keeping a large catalog of downloaded music files. There’s a service for those folks called TuneFab. This is a platform that can take music tracks from streaming services such as Spotify, Apple Music, Pandora, Amazon, etc. and convert them into different audio formats including MP3, WAV, FLAC, etc. Well, TuneFab just went through a pretty big data leak that exposed sensitive information from many of its users.

If you’re thinking of using this program, you’ll be doing so at your own risk, and not just because of the data leak. Using it puts you at risk of downloading copyrighted material, which is illegal. That’s why we don’t recommend that you use the platform.

Advertisement
Advertisement

TuneFab just had a big data leak

If you thought that your data stayed safe at all on the internet, prepare for disappointment. There are hacks and data leaks happening every day, and there’s not really anything that people can do to stop it. Cybernews spotted a leak in TuneFab’s boat back on September 26th, so this happened a while back. The company managed to set things right again, but the data could have sat exposed for up to 24 hours.

According to the reports, the leak happened because of a “misconfiguration on MongoDB, a document-oriented database platform, that left TubeFab’s data passwordless and publicly accessible.” So, the data of more than 151 million users was exposed. What data got out? Well, the data included IP addresses, userArea, emails, userIDs, and device info. That’s the kind of information that you don’t want to get into the wrong hands. The total load of exposed data weighs in at about 280GB, according to researcher Bob Diachenko.

At this point, there’s no telling what the users are going to have to do in the wake of this latest leak. TuneFab hasn’t responded for comment.