Builder.ai Database Misconfiguration Exposes 1.29 TB of Unsecured Records

A publicly accessible Builder.ai database containing over 3 million records was discovered without password protection or encryption. The exposed data included sensitive customer and internal information, such as invoices, NDAs, tax documents, and cloud storage keys, potentially leading to phishing, invoice fraud, and unauthorized access. It took nearly a month for Builder.ai to secure the database after being notified, highlighting concerns about their incident response efficiency.