Veritone AI: How Two Open Servers Exposed US Government Data

UpGuard discovered Veritone Inc, an AI provider for the US government, exposed 550 GB of internal and client data on unprotected Elasticsearch servers. The leaked data included Veritone employee data, AI training data, and client data from US government entities such as the Department of Homeland Security and Veterans Affairs. Also exposed were documents, videos, and images related to Freedom of Information Act requests and police body camera videos. The servers were hosted on Microsoft’s Azure Government Cloud, which had not been properly configured to require authentication.