Researchers at Cybernews discovered on June 12 an exposed Elasticsearch cluster holding roughly 24 billion stolen credential records (8.3 TB), enriched with CVE data to prioritize which credentials could be exploited against unpatched systems; it was taken offline by June 15 but the credentials remain in circulation. The findings reinforce the value of MFA, credential monitoring, and rate-limiting controls for customer- and employee-facing banking systems.