Amazon DB exposed with Prime Video viewing habits

Security researcher Anurag Sen discovered an unprotected Amazon Prime database containing pseudonymized viewing data, accessible from the internet without a password. Named "Sauron," the Elasticsearch database held approximately 215 million records, including information on streamed content, device type, network quality, and subscription status. Detected by Shodan on September 30, the database remained exposed for weeks. Amazon quickly secured the data after being alerted and clarified that the issue was due to a deployment error unrelated to AWS security.