Thursday, November 5, 17:36
Home security Popular casting website leaked online data of 260.000 people!

Popular casting website leaked online data of 260.000 people!

The popular casting website of USA "" leaked the data of about 260.000 people online. Investigators security of Safety Detectives, led by Anurag Sen, said in a report that the leak was discovered in early June.

New Orleans-based is an online casting agency that hires actors to star in movies or TV shows. Users can register for free or for free subscription to apply for casting. The casting company claims to have provided actors for major productions, including True Detective, Pitch Perfect, NCIS: New Orleans and Terminator Genisys.

casting website

Safety Detectives researchers have discovered an open Elasticsearch server, hosted by Google Cloud, in the USA. The database was not secure through any form of authentication, resulting in some 10 million leaks archives. The base data The size of 1 GB and the researchers found that the profiles of 260.000 users of the casting website, including aspiring actors, were leaked, while the profiles of company employees may also have been leaked.

Identifiable information (PII) leaked online included names, home addresses, addresses e-mail, telephone numbers, work histories, dates of birth, physical characteristics (height - weight), nationality and external characteristics that are of interest to potential employers, such as hair length and color or eye color.

casting website

In addition, the leaked records contained information about the vehicles that the people may have had, such as model, color and year of manufacture. The violation also leaked photos of faces and bodies. However, not all the photos in the website files were leaked, as they were stored in many locations and through different services. in cloud.

People under the age of 18 can also register on the platform of the casting website, provided that their accounts are managed by their guardians and that they give their consent.


The researchers said that leaking data from the casting website could determine how much and which of the data leaked online belonged to children, although the security team did not perform a complete download or demographic analysis of the available data, mainly for ethical reasons.

His files server show that the leak first started on May 31st. MyCastingFile is moving to new ones platform, so this issue may be related to movement.
Safety Detectives investigators examined and verified the owner of the database, finding on June 11 that it belonged to MyCastingFile. The same day, MyCastingFile secured its server.

MyCastingFile's quick response to leakage is, unfortunately, rare these days. In many cases of data leak investigators, organizations need weeks or even months to deal with the problem, and it is not uncommon for them to simply ignore security warnings.


Please enter your comment!
Please enter your name here

Every accomplishment starts with the decision to try.


Chesapeake Medical Center: 23.000 patient information reports

A data breach that affected Chesapeake Medical Center in Virginia, USA, resulted in the exposure of sensitive information about ...

An unknown person transferred $ 1.000.000 worth of bitcoin from a bitcoin wallet!

About $ 1 billion in bitcoin has been transferred from a mysterious wallet that has been in obscurity since 2015. The transfer of about ...

The National Guard cybersecurity team is assisting the UVM Medical Center with the hack

The cyber security unit of the Vermont National Guard will help the University of Vermont Medical Center put in ...

Expenditure on smart city technologies will increase by 22,7% by 2025

Research firm Frost & Sullivan has released a new report that analyzes global spending on smart city technologies that will ...

23,600 compromised databases leaked to the internet

More than 23.000 compromised databases are available on hacking forums and Telegram channels, with security experts saying it is ...

Watch Dogs: Legion was hacked and the source code was released on the internet

Watch Dogs: Legion is a Ubisoft game set recently released in London and has to do with hacking ....

How to disable Pop-up Blocker in Chrome

The appearance of pop-ups while browsing the web can be annoying, but sometimes you want to see pop-ups ....

Russian hacker arrested by Russian authorities for targeting locals

Russian authorities arrested a malware creator in late September, causing surprise as Russia is a country that is usually lenient ...

How to block websites in Chrome (Desktop and Mobile)

Suppose you want to block specific websites, such as Facebook or Pinterest, on the computer you are working on to ensure that ...

Cisco: Zero-day vulnerability in Cisco AnyConnect Secure Mobility Client

Cisco today unveiled a zero-day vulnerability in Cisco AnyConnect Secure Mobility Client software with proof-of-concept exploit code being ...