A data leak from the Municipal Bond Insurance Association has exposed a large amount of customer information including account numbers, balances and account holder names, according to the blog KrebsOnSecurity.

The leak was caused by a misconfigured Oracle Reports database server, KrebsOnSecurity blogger Brian Krebs wrote. Instead of being accessible only to authorized users, the information was exposed on the Web, including some that had already been indexed by search engines.

MBIA, a company in Purchase, New York, that insures bonds and provides asset management advisory services, said it has taken the affected server offline.

To read this article in full or to leave a comment, please click here