{"id":166494,"date":"2024-02-09T00:09:26","date_gmt":"2024-02-09T00:09:26","guid":{"rendered":"https:\/\/www.techopedia.com\/?p=166494"},"modified":"2024-02-09T00:15:53","modified_gmt":"2024-02-09T00:15:53","slug":"2m-student-records-leaked-through-lecturenotes-app","status":"publish","type":"post","link":"https:\/\/www.techopedia.com\/lecturenotes-app-leaks-2m-student-records","title":{"rendered":"2M Student Records Leaked Through LectureNotes App"},"content":{"rendered":"<p>Cybernews researchers have discovered a misconfigured database on the LectureNotes Learning App, which has exposed the data of over 2 million student users on the internet.<\/p>\n<p>LectureNotes, which enables faculties to share notes with students via web, Android, and iOS, leaked 2,165,139 records, including username, first name, last name, email, password (encrypted), phone number, <a href=\"https:\/\/www.techopedia.com\/definition\/2435\/internet-protocol-address-ip-address\">IP address<\/a>, <a href=\"https:\/\/www.techopedia.com\/definition\/1614\/user-agent-ua\">user-agent<\/a>, <a href=\"https:\/\/www.techopedia.com\/definition\/5392\/session-computer-science\">session tokens<\/a>, and administrator authorization IDs.<\/p>\n<p>\u201cThe exposure of session tokens poses a severe threat, potentially allowing a potential attacker to illicitly access user sessions without requiring passwords,\u201d <a href=\"https:\/\/cybernews.com\/security\/lecturenotes-data-leak-two-million-affected\/\" target=\"_blank\">Cybernews researchers wrote<\/a>.<\/p>\n<p>The news comes just weeks after Cybernews researchers and Bob Dyachenko of Security Discovery.com discovered the <a href=\"https:\/\/www.techopedia.com\/mother-of-all-breaches-everything-you-need-to-know\">Mother of All Breaches<\/a> (MOAB) in January, which featured 26 billion leaked records from popular services like Twitter, Dropbox, LinkedIn, Adobe, Canva, and Telegram.<\/p>\n<div class=\"su-note\"  style=\"border-color:#dddddd;border-radius:3px;-moz-border-radius:3px;-webkit-border-radius:3px;\"><div class=\"su-note-inner su-u-clearfix su-u-trim\" style=\"background-color:#f7f7f7;border-color:#ffffff;color:#333333;border-radius:3px;-moz-border-radius:3px;-webkit-border-radius:3px;\">\n<h2><span id=\"key_takeaways\">Key Takeaways<\/span><\/h2>\n<ul>\n<li>The LectureNotes Learning App exposed data of over 2 million student users due to a misconfigured database.<\/li>\n<li>Exposed information includes usernames, passwords, and session tokens.<\/li>\n<li>Cybernews discovered the leak and highlighted the threat of unauthorized access and phishing attacks.<\/li>\n<li>Users are urged to change passwords or use <a href=\"https:\/\/www.techopedia.com\/password-manager\/best-password-managers\">secure password managers<\/a>, watch out for phishing attempts, and practice cyber hygiene to mitigate risks.<\/li>\n<\/ul>\n<\/div><\/div>\n<div>\n    <section class=\"toc-sticky w-100 bg-white \">\n        <div class=\"toc-sticky__container container\">\n            <div class=\"toc-sticky__open d-flex align-items-end\" data-bs-toggle=\"collapse\"\n                 aria-controls=\"multiCollapse1\"\n                 data-bs-target=\"#multiCollapse1\">\n                <button\n                        class=\"btn btn-primary collapse-action-btn p-1 rounded-circle\"\n                        type=\"button\"\n                >\n                    <i class=\"icon-chevron-up\"><\/i>\n                <\/button>\n                <span id=\"toc-current-title\" class=\"d-flex align-items-center\">\n                    Table of Contents\n                <\/span>\n                <span class=\"toc-main-title-permanent\">Table of Contents<\/span>\n            <\/div>\n            <div\n                    class=\"collapse my-3\"\n                    id=\"multiCollapse1\"\n            >\n                <ol class=\"StepProgress\">\n                                                                        <li class=\"StepProgress-item current\">\n                                                <div class=\"StepProgress-item__group\">\n                            <a data-id=\"key_takeaways\"\n                               onclick=handleScrollToTitle(\"key_takeaways\")\n                               class=\"StepProgress-item__link\" data-level=\"2\">Key Takeaways<\/a>\n                                                    <\/div>\n                                                <\/li>\n                                                                        <li class=\"StepProgress-item\">\n                                                <div class=\"StepProgress-item__group\">\n                            <a data-id=\"how_the_lecturenotes_leak_happened\"\n                               onclick=handleScrollToTitle(\"how_the_lecturenotes_leak_happened\")\n                               class=\"StepProgress-item__link\" data-level=\"2\">How the LectureNotes Leak Happened<\/a>\n                                                    <\/div>\n                                                <\/li>\n                                                                        <li class=\"StepProgress-item\">\n                                                <div class=\"StepProgress-item__group\">\n                            <a data-id=\"mitigating_the_lecturenotes_fallout\"\n                               onclick=handleScrollToTitle(\"mitigating_the_lecturenotes_fallout\")\n                               class=\"StepProgress-item__link\" data-level=\"2\">Mitigating the LectureNotes Fallout<\/a>\n                                                    <\/div>\n                                                <\/li>\n                                                                        <li class=\"StepProgress-item\">\n                                                <div class=\"StepProgress-item__group\">\n                            <a data-id=\"the_bottom_line\"\n                               onclick=handleScrollToTitle(\"the_bottom_line\")\n                               class=\"StepProgress-item__link\" data-level=\"2\">The Bottom Line\u00a0<\/a>\n                                                    <\/div>\n                                                <\/li>\n                                    <\/ol>\n                <div class=\"toc-sticky__container__disperse\"><\/div>\n                <div class=\"toc-sticky__btn-top justify-content-center\">\n                    <button class=\"btn btn-link d-flex align-items-center\" onclick={btnTop()}><p>Show Full Guide<\/p><img decoding=\"async\"\n                                src=\"\/wp-content\/plugins\/table-of-contents\/assets\/images\/arrow-up-circle.svg\"\n                                alt=\"arrow-up-circle\">\n                    <\/button>\n                <\/div>\n            <\/div>\n        <\/div>\n    <\/section>\n    <div class=\"toc-sticky-list\">\n        <div class=\"toc-sticky__container container\">\n            <div class=\"toc-sticky__open d-flex align-items-end\" data-bs-toggle=\"collapse\" aria-controls=\"multiCollapse2\" data-bs-target=\"#multiCollapse2\">\n                <button class=\"btn btn-primary collapse-action-btn p-1 rounded-circle\"\n                        type=\"button\">\n                    <i class=\"icon-chevron-up up\"><\/i>\n                <\/button>\n                <span id=\"toc-current-title\" class=\"d-flex align-items-center\">\n                    Table of Contents\n                <\/span>\n            <\/div>\n            <div  class=\"collapse my-3\" id=\"multiCollapse2\">\n                <ol class=\"StepProgress\">\n                    \t\t\t\t\t \t\t\t\t\t                                                     <li class=\"StepProgress-item current \">\n                                                    <div class=\"StepProgress-item__group\">\n                                <a data-id=\"key_takeaways\"\n                                   onclick=handleScrollToTitle(\"key_takeaways\")\n                                   class=\"StepProgress-item__link\"\n                                   data-level=\"2\">Key Takeaways<\/a>\n                                                            <\/div>\n                                                    <\/li>\n                    \t\t\t\t\t \t\t\t\t\t                                                     <li class=\"StepProgress-item \">\n                                                    <div class=\"StepProgress-item__group\">\n                                <a data-id=\"how_the_lecturenotes_leak_happened\"\n                                   onclick=handleScrollToTitle(\"how_the_lecturenotes_leak_happened\")\n                                   class=\"StepProgress-item__link\"\n                                   data-level=\"2\">How the LectureNotes Leak Happened<\/a>\n                                                            <\/div>\n                                                    <\/li>\n                    \t\t\t\t\t \t\t\t\t\t                                                     <li class=\"StepProgress-item \">\n                                                    <div class=\"StepProgress-item__group\">\n                                <a data-id=\"mitigating_the_lecturenotes_fallout\"\n                                   onclick=handleScrollToTitle(\"mitigating_the_lecturenotes_fallout\")\n                                   class=\"StepProgress-item__link\"\n                                   data-level=\"2\">Mitigating the LectureNotes Fallout<\/a>\n                                                            <\/div>\n                                                    <\/li>\n                    \t\t\t\t\t \t\t\t\t\t\n\t\t\t\t\t\t <span class=\"show_moretoc\">Show Full Guide<\/span>\n\t\t\t\t\t\t \t\t\t\t\t \t\t\t\t\t\t  \t\t\t\t\t                                                      <li class=\"StepProgress-item ms_hidetoc\">\n                                                    <div class=\"StepProgress-item__group\">\n                                <a data-id=\"the_bottom_line\"\n                                   onclick=handleScrollToTitle(\"the_bottom_line\")\n                                   class=\"StepProgress-item__link\"\n                                   data-level=\"2\">The Bottom Line\u00a0<\/a>\n                                                            <\/div>\n                                                    <\/li>\n                                    <\/ol>\n            <\/div>\n            <div class=\"toc-sticky__container__disperse\"><\/div>\n        <\/div>\n    <\/div>\n<\/div>\n\n<script id=\"toc-js\">\n    window.addEventListener(\"DOMContentLoaded\", () => {\n        const header = document.querySelector(\".header_wrapper\");\n\n        const pageLegend = document.querySelector('#multiCollapse1');\n        const pageLegendList = document.querySelector('#multiCollapse2');\n        const pageLegendCollapse = new bootstrap.Collapse(pageLegend, {toggle: document.querySelector(\".toc-sticky\").classList.contains('sticky')});\n\n        \/**\n         * Changing current title\n         *\/\n        (function (pageLegend) {\n            const titleNodes = pageLegend.querySelectorAll('.StepProgress-item__link');\n\n            if (!titleNodes.length) return;\n\n            const titles = [...titleNodes].map((itm, i) => ({\n                id: itm.getAttribute('data-id'),\n                text: itm.textContent,\n                level: itm.getAttribute('data-level'),\n                linkNode: itm,\n                titleNode: document.getElementById(itm.getAttribute('data-id')),\n                index: i,\n            }));\n\n            \/**\n             * Source: https:\/\/www.sitepoint.com\/throttle-scroll-events\/\n             * @param {Function} fn\n             * @param {number} wait\n             * @returns {(function(): void)|*}\n             *\/\n            const throttle = (fn, wait) => {\n                let time = Date.now();\n                return function () {\n                    if ((time + wait - Date.now()) < 0) {\n                        fn();\n                        time = Date.now();\n                    }\n                }\n            }\n\n            const changeCurrentTitle = () => {\n                const documentScrollTop = window.pageYOffset || document.documentElement.scrollTop || document.body.scrollTop || 0;\n                let current = 0;\n\n                \/\/ Title\n                titles.forEach((itm, i) => {\n\t\t\t\t\/\/console.log(itm)\n                    const itmOffsetTop = itm.titleNode ? itm.titleNode.offsetTop - 100 : 0;\n\n                    if (documentScrollTop >= itmOffsetTop) {\n                        document.getElementById('toc-current-title').innerHTML = itm.text;\n                        document.getElementById('toc-current-title').setAttribute('data-current-id', itm.id);\n                        document.getElementById('toc-current-title').setAttribute('data-current-level', itm.level);\n                        current = i;\n                    }\n                })\n\n                \/\/ close all list and open sub list if needed\n                if (document.querySelector(\".toc-sticky\").classList.contains('sticky')) {\n                    document.querySelectorAll('.subList-in-progress').forEach((el) => {\n                        el.children[1].classList.remove('show');\n                        el.getElementsByClassName('icon-chevron-down')[0].classList.remove('up');\n                    });\n                    const currentEl = titles[current];\n                    currentEl.linkNode.classList.add('show');\n                }\n\n                titles.forEach((itm, i) => {\n                    itm.linkNode.parentNode.parentNode.classList.remove('current', 'is-done');\n                    if (current > i) {\n                        itm.linkNode.parentNode.parentNode.classList.add('is-done')\n                    };\n                    if (current === i) {\n                      itm.linkNode.parentNode.parentNode.classList.add('current');\n                    };\n                })\n\n            }\n\n            changeCurrentTitle();\n\n            document.addEventListener('scroll', throttle(changeCurrentTitle, 50));\n        })(pageLegend);\n\n\n        \/**\n         *  Collapse\n         *\/\n        (function (pageLegend, header) {\n            const icon = pageLegend.parentNode.querySelector(\".collapse-action-btn i\");\n\n            const collapseToggle = (status) => (e) => {\n                if (!e.target.isEqualNode(pageLegend)) return;\n\n                icon.classList.toggle(\"up\");\n\n                const containerHeight = pageLegend.getBoundingClientRect().height;\n\n                const showSubtitleContent = () => {\n                    const currentId = document.getElementById('toc-current-title').getAttribute('data-current-id');\n                    const currentLevel = document.getElementById('toc-current-title').getAttribute('data-current-level');\n                    const currentSubTitle = currentLevel == 3 ? document.querySelector(`a[data-id=\"${currentId}\"]`).parentNode.parentNode.parentNode : false;\n\n                    if (!currentSubTitle) return;\n                    new bootstrap.Collapse(currentSubTitle, {toggle: false}).show();\n                }\n\n                showSubtitleContent();\n                if (status === 'shown' && document.querySelector(\".toc-sticky\").classList.contains('sticky') ) {\n                    document.querySelector('html').classList.remove('overflow-hidden');\n                    pageLegend.classList.add('overflow-auto');\n                    pageLegend.style.height = `calc(100vh - ${header.getBoundingClientRect().height + document.querySelector('.toc-sticky__open').getBoundingClientRect().height + 16}px)`;\n                } else if (status === 'hide') {\n                    document.querySelector('html').classList.remove('overflow-hidden');\n                    pageLegend.classList.remove('overflow-auto');\n                    pageLegend.style.height = 'auto';\n                }\n            }\n\n            pageLegend.addEventListener('shown.bs.collapse', collapseToggle('shown'));\n            pageLegend.addEventListener('hide.bs.collapse', collapseToggle('hide'));\n        })(pageLegend, header);\n\n        \/**\n         * Collapse sub-titles\n         *\/\n        (function (pageLegend) {\n            const collapseEls = pageLegend.querySelectorAll('.collapse');\n\n            collapseEls.forEach(function (el) {\n\n                const toggleArrowDirection = function (e) {\n                    if (!e.target.isEqualNode(el)) return;\n\n                    const id = this.getAttribute('id');\n                    document.querySelector(`.collapse-action-btn[data-bs-target=\"#${id}\"] .icon-chevron-down`).classList.toggle('up');\n                }\n                el.addEventListener('shown.bs.collapse', toggleArrowDirection);\n                el.addEventListener('hide.bs.collapse', toggleArrowDirection);\n            })\n        })(pageLegend);\n\n        \/**\n         *  Collapse main title\n         *\/\n        (function (pageLegendList) {\n            const icon = pageLegendList.parentNode.querySelector(\".collapse-action-btn i\");\n\n            const collapseToggle = () => (e) => {\n                if (!e.target.isEqualNode(pageLegendList)) return;\n\n                icon.classList.toggle(\"up\");\n\n            }\n            pageLegendList.addEventListener('shown.bs.collapse', collapseToggle());\n            pageLegendList.addEventListener('hide.bs.collapse', collapseToggle());\n        })(pageLegendList);\n\n        (function (pageLegendList) {\n            const collapseEls = pageLegendList.querySelectorAll('.collapse');\n\n            collapseEls.forEach(function (el) {\n\n                const toggleArrowDirection = function (e) {\n                    if (!e.target.isEqualNode(el)) return;\n\n                    const id = this.getAttribute('id');\n                    document.querySelector(`.toc-sticky-list .collapse-action-btn[data-bs-target=\"#${id}\"] .icon-chevron-down`).classList.toggle('up');\n                }\n                el.addEventListener('shown.bs.collapse', toggleArrowDirection);\n                el.addEventListener('hide.bs.collapse', toggleArrowDirection);\n            })\n        })(pageLegendList);\n\n        \/**\n         * Sticky functionality\n         * Source: https:\/\/stackoverflow.com\/questions\/17893771\/javascript-sticky-div-after-scroll\n         *\/\n        (function (header, pageLegendCollapse) {\n            \/\/ set everything outside the onscroll event (less work per scroll)\n            const target = document.querySelector(\".toc-sticky\");\n            const targetListStatic = document.querySelector(\".toc-sticky-list\");\n\n            if (!target || !header) return;\n\n            const headerHeight = header.getBoundingClientRect().height;\n            const targetHeight = targetListStatic.getBoundingClientRect().height;\n\n            \/\/ -headerHeight so it won't be jumpy\n            const stop = targetListStatic.offsetTop + headerHeight + targetHeight;\n            const docBody =\n                document.documentElement || document.body.parentNode || document.body;\n            const hasOffset = window.pageYOffset !== undefined;\n\n            const applySticky = function () {\n                \/\/ cross-browser compatible scrollTop.\n                const scrollTop = hasOffset ? window.pageYOffset : docBody.scrollTop;\n\n                \/\/ if user scrolls to headerHeight from the top of the target div\n                if (scrollTop >= stop) {\n                    pageLegendCollapse.hide();\n                    \/\/ stick the div\n                    target.classList.add(\"sticky\");\n                    \/\/target.style.marginTop = `${headerHeight}px`;\n                } else {\n                    pageLegendCollapse.show();\n                    \/\/ release the div\n                    target.classList.remove(\"sticky\");\n                    target.style.marginTop = \"\";\n                }\n            }\n\n            applySticky();\n\n            window.addEventListener('scroll', applySticky);\n        })(header, pageLegendCollapse);\n\tjQuery('span.show_moretoc').click(function(){\n\t\tjQuery('span.show_moretoc').hide();\n\t   jQuery('.ms_hidetoc').show();\n\t});\n    });\n\n    \/\/ When the user clicks on the button, scroll to the top of the document\n    function btnTop() {\n        const pageLegend = document.querySelector('#multiCollapse1');\n        document.querySelector('html').classList.remove('overflow-hidden');\n        pageLegend.classList.remove('overflow-auto');\n        pageLegend.style.height = 'auto';\n        window.scrollTo({\n            top: 0,\n            behavior: 'smooth'\n        });\n    }\n\n    const handleScrollToTitle = (id) => {\n        const el = document.getElementById(id);\n        const headerHeightDifference = window.innerWidth < 992 ? -30 : -15;\n        window.scrollTo({\n            top: el.offsetTop - 60 - headerHeightDifference - 10,\n        });\n    }\n<\/script>\n\n<h2><span id=\"how_the_lecturenotes_leak_happened\">How the LectureNotes Leak Happened<\/span><\/h2>\n<p>This incident occurred due to a simple misconfiguration, which caused the <a href=\"https:\/\/www.techopedia.com\/definition\/30340\/mongodb\">MongoDB<\/a> database to update in real time, exposing user data and current user sessions. It was through this simple error that Cybernews discovered the information online.<\/p>\n<p>Unfortunately, this type of database misconfiguration isn\u2019t the only one of its kind. Back in 2021, Group-IB researchers conducted a study and found that <a href=\"https:\/\/www.group-ib.com\/media-center\/press-releases\/public-facing-db\/\" target=\"_blank\">there were 308,000 databases exposed on the open web<\/a>.<\/p>\n<p>Patrick Tiquet, vice president of security and architecture at Keeper Security, warned that this was a significant leak, telling Techopedia:<\/p>\n<blockquote><p>\u201cThe severity of this data breach is significantly heightened because of the personal details and critical administrator credentials that were part of the compromised data.<\/p><\/blockquote>\n<p>\u201cThe immediate concern is the potential exploitation of this exposed data, which could lead to various malicious activities such as <a href=\"https:\/\/www.techopedia.com\/definition\/13637\/identity-theft\">identity theft<\/a>, <a href=\"https:\/\/www.techopedia.com\/definition\/4049\/phishing\">phishing attacks<\/a> and unauthorized access to user accounts.<\/p>\n<p>\u201cCurrent and former users of LectureNotes should assume they\u2019ve already been breached and act accordingly.\u201d<\/p>\n<p>Phishing attacks are one of the most pressing concerns because a threat actor could use the leaked information to target an individual with a fake email, giving the user a link to update their account details and direct them to a spoofed website.<\/p>\n<p>There is also the potential that many compromised accounts have used the same password for other services, with students urged to change passwords elsewhere or use a <a href=\"https:\/\/www.techopedia.com\/password-manager\/best-password-managers\">secure password manager<\/a>.<\/p>\n<p>At the same time, Cybernews noted that there is the potential that session tokens could be used to access accounts without the need for a password.<\/p>\n<h2><span id=\"mitigating_the_lecturenotes_fallout\">Mitigating the LectureNotes Fallout<\/span><\/h2>\n<p>Given the information leaked, it\u2019s a good idea for users to act quickly to ensure they are protected from any risks.<\/p>\n<p>\u201cProactive steps individuals can take include changing login information for their account with LectureNotes, getting a dark web monitoring service, monitoring or freezing their credit, and practising good cyber hygiene,\u201d Tiquet said.<\/p>\n<p>Tiquet also said users can take other measures, including selecting strong and unique passwords for each account, enabling <a href=\"https:\/\/www.techopedia.com\/definition\/13657\/multi-factor-authentication-mfa\">multi-factor authentication<\/a> (MFA), keeping software up-to-date, and being careful what they click on.<\/p>\n<p>This can also be combined with measures such as downloading the <a href=\"https:\/\/www.techopedia.com\/antivirus\/best-antivirus-software\">best antivirus software<\/a> and using one of the <a href=\"https:\/\/www.techopedia.com\/vpn\/best-vpn\">best VPN providers<\/a> to make it harder for threat actors to compromise your device and eavesdrop on your activity.<\/p>\n<p>Above all, being vigilant against phishing emails is one of the best defences that users can incorporate into their basic <a href=\"https:\/\/www.techopedia.com\/cybersecurity-resilience-and-hygiene\">cyber hygiene<\/a>. This means not clicking on links or attachments from unknown senders and double-checking communications for high-pressure language and spelling mistakes.<\/p>\n<p>While users can\u2019t prevent themselves from falling victim to breaches due to exposed databases or vendor mistakes, they can safeguard their personal information, accounts, and machines to make their data much more difficult to access on their side.<\/p>\n<h2><span id=\"the_bottom_line\">The Bottom Line\u00a0<\/span><\/h2>\n<p>LectureNotes users should react quickly to the reported leak to make sure they\u2019re insulated against potential risks.<\/p>\n<p>MongoDB databases are a popular target for attackers because they are a potential goldmine for high-value information. The fact this information was readily available online could mean that it was exposed to malicious actors.<\/p>\n<p>The key take-home is that users should update their passwords and keep an eye out for phishing emails just in case a hacker tries to target them. This a case where it\u2019s better to be safe than sorry.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>Cybernews researchers have discovered a misconfigured database on the LectureNotes Learning App, which has exposed the data of over 2 million student users on the internet. LectureNotes, which enables faculties to share notes with students via web, Android, and iOS, leaked 2,165,139 records, including username, first name, last name, email, password (encrypted), phone number, IP [&hellip;]<\/p>\n","protected":false},"author":286576,"featured_media":166519,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_acf_changed":false,"_lmt_disableupdate":"","_lmt_disable":"","om_disable_all_campaigns":false,"footnotes":""},"categories":[585,548],"tags":[],"category_partsoff":[],"class_list":["post-166494","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-cyber-threats","category-cybersecurity"],"acf":[],"yoast_head":"<!-- This site is optimized with the Yoast SEO Premium plugin v24.2 (Yoast SEO v24.5) - https:\/\/yoast.com\/wordpress\/plugins\/seo\/ -->\n<title>2M Student Records Leaked Through LectureNotes App - Techopedia<\/title>\n<meta name=\"description\" content=\"Cybernews researchers discovered a misconfigured MongoDB database on the LectureNotes Learning App, which exposed the data of over 2 million users.\" \/>\n<meta name=\"robots\" content=\"noindex, follow\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"2M Student Records Leaked Through LectureNotes App\" \/>\n<meta property=\"og:description\" content=\"Cybernews researchers discovered a misconfigured MongoDB database on the LectureNotes Learning App, which exposed the data of over 2 million users.\" \/>\n<meta property=\"og:url\" content=\"https:\/\/www.techopedia.com\/lecturenotes-app-leaks-2m-student-records\" \/>\n<meta property=\"og:site_name\" content=\"Techopedia\" \/>\n<meta property=\"article:publisher\" content=\"https:\/\/www.facebook.com\/techopedia\/\" \/>\n<meta property=\"article:published_time\" content=\"2024-02-09T00:09:26+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2024-02-09T00:15:53+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/www.techopedia.com\/wp-content\/uploads\/2024\/02\/Exposed-App-Leak.jpg\" \/>\n\t<meta property=\"og:image:width\" content=\"1200\" \/>\n\t<meta property=\"og:image:height\" content=\"600\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/jpeg\" \/>\n<meta name=\"author\" content=\"Tim Keary\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:creator\" content=\"@https:\/\/twitter.com\/tim_keary\" \/>\n<meta name=\"twitter:site\" content=\"@techopedia\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"Tim Keary\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"4 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\/\/www.techopedia.com\/lecturenotes-app-leaks-2m-student-records#article\",\"isPartOf\":{\"@id\":\"https:\/\/www.techopedia.com\/lecturenotes-app-leaks-2m-student-records\"},\"author\":{\"name\":\"Tim Keary\",\"@id\":\"https:\/\/www.techopedia.com\/#\/schema\/person\/ef2b1051cd28a335ecc07cd562f14008\"},\"headline\":\"2M Student Records Leaked Through LectureNotes App\",\"datePublished\":\"2024-02-09T00:09:26+00:00\",\"dateModified\":\"2024-02-09T00:15:53+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\/\/www.techopedia.com\/lecturenotes-app-leaks-2m-student-records\"},\"wordCount\":776,\"commentCount\":0,\"publisher\":{\"@id\":\"https:\/\/www.techopedia.com\/#organization\"},\"image\":{\"@id\":\"https:\/\/www.techopedia.com\/lecturenotes-app-leaks-2m-student-records#primaryimage\"},\"thumbnailUrl\":\"https:\/\/www.techopedia.com\/wp-content\/uploads\/2024\/02\/Exposed-App-Leak.jpg\",\"articleSection\":\"\",\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"CommentAction\",\"name\":\"Comment\",\"target\":[\"https:\/\/www.techopedia.com\/lecturenotes-app-leaks-2m-student-records#respond\"]}],\"copyrightYear\":\"2024\",\"copyrightHolder\":{\"@id\":\"https:\/\/www.techopedia.com\/#organization\"}},{\"@type\":\"WebPage\",\"@id\":\"https:\/\/www.techopedia.com\/lecturenotes-app-leaks-2m-student-records\",\"url\":\"https:\/\/www.techopedia.com\/lecturenotes-app-leaks-2m-student-records\",\"name\":\"2M Student Records Leaked Through LectureNotes App - Techopedia\",\"isPartOf\":{\"@id\":\"https:\/\/www.techopedia.com\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\/\/www.techopedia.com\/lecturenotes-app-leaks-2m-student-records#primaryimage\"},\"image\":{\"@id\":\"https:\/\/www.techopedia.com\/lecturenotes-app-leaks-2m-student-records#primaryimage\"},\"thumbnailUrl\":\"https:\/\/www.techopedia.com\/wp-content\/uploads\/2024\/02\/Exposed-App-Leak.jpg\",\"datePublished\":\"2024-02-09T00:09:26+00:00\",\"dateModified\":\"2024-02-09T00:15:53+00:00\",\"description\":\"Cybernews researchers discovered a misconfigured MongoDB database on the LectureNotes Learning App, which exposed the data of over 2 million users.\",\"breadcrumb\":{\"@id\":\"https:\/\/www.techopedia.com\/lecturenotes-app-leaks-2m-student-records#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/www.techopedia.com\/lecturenotes-app-leaks-2m-student-records\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/www.techopedia.com\/lecturenotes-app-leaks-2m-student-records#primaryimage\",\"url\":\"https:\/\/www.techopedia.com\/wp-content\/uploads\/2024\/02\/Exposed-App-Leak.jpg\",\"contentUrl\":\"https:\/\/www.techopedia.com\/wp-content\/uploads\/2024\/02\/Exposed-App-Leak.jpg\",\"width\":1200,\"height\":600,\"caption\":\"A mobile phone leaking data\"},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/www.techopedia.com\/lecturenotes-app-leaks-2m-student-records#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\/\/www.techopedia.com\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Cybersecurity\",\"item\":\"https:\/\/www.techopedia.com\/topic\/4\/cybersecurity\"},{\"@type\":\"ListItem\",\"position\":3,\"name\":\"Cyber Threats\",\"item\":\"https:\/\/www.techopedia.com\/topic\/220\/cyber-threats\"},{\"@type\":\"ListItem\",\"position\":4,\"name\":\"2M Student Records Leaked Through LectureNotes App\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/www.techopedia.com\/#website\",\"url\":\"https:\/\/www.techopedia.com\/\",\"name\":\"Techopedia\",\"description\":\"\",\"publisher\":{\"@id\":\"https:\/\/www.techopedia.com\/#organization\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/www.techopedia.com\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\/\/www.techopedia.com\/#organization\",\"name\":\"Techopedia\",\"url\":\"https:\/\/www.techopedia.com\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/www.techopedia.com\/#\/schema\/logo\/image\/\",\"url\":\"https:\/\/www.techopedia.com\/wp-content\/uploads\/2025\/02\/techopedia-light-logo.svg\",\"contentUrl\":\"https:\/\/www.techopedia.com\/wp-content\/uploads\/2025\/02\/techopedia-light-logo.svg\",\"caption\":\"Techopedia\"},\"image\":{\"@id\":\"https:\/\/www.techopedia.com\/#\/schema\/logo\/image\/\"},\"sameAs\":[\"https:\/\/www.facebook.com\/techopedia\/\",\"https:\/\/x.com\/techopedia\",\"https:\/\/www.linkedin.com\/company\/techopedia\/\",\"https:\/\/www.youtube.com\/c\/Techopedia\"],\"publishingPrinciples\":\"https:\/\/www.techopedia.com\/about\/editorial-policy\",\"ownershipFundingInfo\":\"https:\/\/www.techopedia.com\/about\"},{\"@type\":\"Person\",\"@id\":\"https:\/\/www.techopedia.com\/#\/schema\/person\/ef2b1051cd28a335ecc07cd562f14008\",\"name\":\"Tim Keary\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/www.techopedia.com\/#\/schema\/person\/image\/\",\"url\":\"https:\/\/www.techopedia.com\/wp-content\/uploads\/2023\/06\/avatar_user_286576_1687989285-300x300.jpg\",\"contentUrl\":\"https:\/\/www.techopedia.com\/wp-content\/uploads\/2023\/06\/avatar_user_286576_1687989285-300x300.jpg\",\"caption\":\"Tim Keary\"},\"description\":\"Tim Keary is a technology writer and reporter covering AI, cybersecurity, and enterprise technology. Before joining Techopedia full-time in 2023, his work appeared on VentureBeat, Forbes Advisor, and other notable technology platforms, where he covered the latest trends and innovations in technology. He holds a Master\u2019s degree in History from the University of Kent, where he learned of the value of breaking complex topics down into simple concepts. Outside of writing and conducting interviews, Tim produces music and trains in Mixed Martial Arts (MMA).\",\"sameAs\":[\"https:\/\/www.linkedin.com\/in\/tim-keary-7742b1135\/\",\"https:\/\/x.com\/https:\/\/twitter.com\/tim_keary\"],\"knowsAbout\":[\"Technology Writer\"],\"url\":\"https:\/\/www.techopedia.com\/contributors\/timkeary\"}]}<\/script>\n<!-- \/ Yoast SEO Premium plugin. -->","yoast_head_json":{"title":"2M Student Records Leaked Through LectureNotes App - Techopedia","description":"Cybernews researchers discovered a misconfigured MongoDB database on the LectureNotes Learning App, which exposed the data of over 2 million users.","robots":{"index":"noindex","follow":"follow"},"og_locale":"en_US","og_type":"article","og_title":"2M Student Records Leaked Through LectureNotes App","og_description":"Cybernews researchers discovered a misconfigured MongoDB database on the LectureNotes Learning App, which exposed the data of over 2 million users.","og_url":"https:\/\/www.techopedia.com\/lecturenotes-app-leaks-2m-student-records","og_site_name":"Techopedia","article_publisher":"https:\/\/www.facebook.com\/techopedia\/","article_published_time":"2024-02-09T00:09:26+00:00","article_modified_time":"2024-02-09T00:15:53+00:00","og_image":[{"width":1200,"height":600,"url":"https:\/\/www.techopedia.com\/wp-content\/uploads\/2024\/02\/Exposed-App-Leak.jpg","type":"image\/jpeg"}],"author":"Tim Keary","twitter_card":"summary_large_image","twitter_creator":"@https:\/\/twitter.com\/tim_keary","twitter_site":"@techopedia","twitter_misc":{"Written by":"Tim Keary","Est. reading time":"4 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/www.techopedia.com\/lecturenotes-app-leaks-2m-student-records#article","isPartOf":{"@id":"https:\/\/www.techopedia.com\/lecturenotes-app-leaks-2m-student-records"},"author":{"name":"Tim Keary","@id":"https:\/\/www.techopedia.com\/#\/schema\/person\/ef2b1051cd28a335ecc07cd562f14008"},"headline":"2M Student Records Leaked Through LectureNotes App","datePublished":"2024-02-09T00:09:26+00:00","dateModified":"2024-02-09T00:15:53+00:00","mainEntityOfPage":{"@id":"https:\/\/www.techopedia.com\/lecturenotes-app-leaks-2m-student-records"},"wordCount":776,"commentCount":0,"publisher":{"@id":"https:\/\/www.techopedia.com\/#organization"},"image":{"@id":"https:\/\/www.techopedia.com\/lecturenotes-app-leaks-2m-student-records#primaryimage"},"thumbnailUrl":"https:\/\/www.techopedia.com\/wp-content\/uploads\/2024\/02\/Exposed-App-Leak.jpg","articleSection":"","inLanguage":"en-US","potentialAction":[{"@type":"CommentAction","name":"Comment","target":["https:\/\/www.techopedia.com\/lecturenotes-app-leaks-2m-student-records#respond"]}],"copyrightYear":"2024","copyrightHolder":{"@id":"https:\/\/www.techopedia.com\/#organization"}},{"@type":"WebPage","@id":"https:\/\/www.techopedia.com\/lecturenotes-app-leaks-2m-student-records","url":"https:\/\/www.techopedia.com\/lecturenotes-app-leaks-2m-student-records","name":"2M Student Records Leaked Through LectureNotes App - Techopedia","isPartOf":{"@id":"https:\/\/www.techopedia.com\/#website"},"primaryImageOfPage":{"@id":"https:\/\/www.techopedia.com\/lecturenotes-app-leaks-2m-student-records#primaryimage"},"image":{"@id":"https:\/\/www.techopedia.com\/lecturenotes-app-leaks-2m-student-records#primaryimage"},"thumbnailUrl":"https:\/\/www.techopedia.com\/wp-content\/uploads\/2024\/02\/Exposed-App-Leak.jpg","datePublished":"2024-02-09T00:09:26+00:00","dateModified":"2024-02-09T00:15:53+00:00","description":"Cybernews researchers discovered a misconfigured MongoDB database on the LectureNotes Learning App, which exposed the data of over 2 million users.","breadcrumb":{"@id":"https:\/\/www.techopedia.com\/lecturenotes-app-leaks-2m-student-records#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/www.techopedia.com\/lecturenotes-app-leaks-2m-student-records"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.techopedia.com\/lecturenotes-app-leaks-2m-student-records#primaryimage","url":"https:\/\/www.techopedia.com\/wp-content\/uploads\/2024\/02\/Exposed-App-Leak.jpg","contentUrl":"https:\/\/www.techopedia.com\/wp-content\/uploads\/2024\/02\/Exposed-App-Leak.jpg","width":1200,"height":600,"caption":"A mobile phone leaking data"},{"@type":"BreadcrumbList","@id":"https:\/\/www.techopedia.com\/lecturenotes-app-leaks-2m-student-records#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/www.techopedia.com\/"},{"@type":"ListItem","position":2,"name":"Cybersecurity","item":"https:\/\/www.techopedia.com\/topic\/4\/cybersecurity"},{"@type":"ListItem","position":3,"name":"Cyber Threats","item":"https:\/\/www.techopedia.com\/topic\/220\/cyber-threats"},{"@type":"ListItem","position":4,"name":"2M Student Records Leaked Through LectureNotes App"}]},{"@type":"WebSite","@id":"https:\/\/www.techopedia.com\/#website","url":"https:\/\/www.techopedia.com\/","name":"Techopedia","description":"","publisher":{"@id":"https:\/\/www.techopedia.com\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/www.techopedia.com\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/www.techopedia.com\/#organization","name":"Techopedia","url":"https:\/\/www.techopedia.com\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.techopedia.com\/#\/schema\/logo\/image\/","url":"https:\/\/www.techopedia.com\/wp-content\/uploads\/2025\/02\/techopedia-light-logo.svg","contentUrl":"https:\/\/www.techopedia.com\/wp-content\/uploads\/2025\/02\/techopedia-light-logo.svg","caption":"Techopedia"},"image":{"@id":"https:\/\/www.techopedia.com\/#\/schema\/logo\/image\/"},"sameAs":["https:\/\/www.facebook.com\/techopedia\/","https:\/\/x.com\/techopedia","https:\/\/www.linkedin.com\/company\/techopedia\/","https:\/\/www.youtube.com\/c\/Techopedia"],"publishingPrinciples":"https:\/\/www.techopedia.com\/about\/editorial-policy","ownershipFundingInfo":"https:\/\/www.techopedia.com\/about"},{"@type":"Person","@id":"https:\/\/www.techopedia.com\/#\/schema\/person\/ef2b1051cd28a335ecc07cd562f14008","name":"Tim Keary","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.techopedia.com\/#\/schema\/person\/image\/","url":"https:\/\/www.techopedia.com\/wp-content\/uploads\/2023\/06\/avatar_user_286576_1687989285-300x300.jpg","contentUrl":"https:\/\/www.techopedia.com\/wp-content\/uploads\/2023\/06\/avatar_user_286576_1687989285-300x300.jpg","caption":"Tim Keary"},"description":"Tim Keary is a technology writer and reporter covering AI, cybersecurity, and enterprise technology. Before joining Techopedia full-time in 2023, his work appeared on VentureBeat, Forbes Advisor, and other notable technology platforms, where he covered the latest trends and innovations in technology. He holds a Master\u2019s degree in History from the University of Kent, where he learned of the value of breaking complex topics down into simple concepts. Outside of writing and conducting interviews, Tim produces music and trains in Mixed Martial Arts (MMA).","sameAs":["https:\/\/www.linkedin.com\/in\/tim-keary-7742b1135\/","https:\/\/x.com\/https:\/\/twitter.com\/tim_keary"],"knowsAbout":["Technology Writer"],"url":"https:\/\/www.techopedia.com\/contributors\/timkeary"}]}},"modified_by":"Michael Simon","_links":{"self":[{"href":"https:\/\/www.techopedia.com\/wp-json\/wp\/v2\/posts\/166494","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.techopedia.com\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.techopedia.com\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.techopedia.com\/wp-json\/wp\/v2\/users\/286576"}],"replies":[{"embeddable":true,"href":"https:\/\/www.techopedia.com\/wp-json\/wp\/v2\/comments?post=166494"}],"version-history":[{"count":0,"href":"https:\/\/www.techopedia.com\/wp-json\/wp\/v2\/posts\/166494\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.techopedia.com\/wp-json\/wp\/v2\/media\/166519"}],"wp:attachment":[{"href":"https:\/\/www.techopedia.com\/wp-json\/wp\/v2\/media?parent=166494"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.techopedia.com\/wp-json\/wp\/v2\/categories?post=166494"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.techopedia.com\/wp-json\/wp\/v2\/tags?post=166494"},{"taxonomy":"category_partsoff","embeddable":true,"href":"https:\/\/www.techopedia.com\/wp-json\/wp\/v2\/category_partsoff?post=166494"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}