117K U.K. Car Insurance Customers’ Data Exposed and Accessed

An exposed server leaked sensitive data, including partial credit card numbers, of more than 117,000 customers of a U.K. car insurance company’s online store.

The AA confirmed to Motherboard some customer data was exposed April 22, but the issue was resolved April 25 and the data was “only accessed several times.”

The data included email addresses, names, mailing addresses, IP addresses and partial credit card information such as the last four digits and expiration dates of customers who shopped at its online store.

Even though the breach is months old, Motherboard alleges the company has not notified affected customers.