A security lapse at Canada’s fourth largest cell network Freedom Mobile exposed customer data. Security researchers Noam Rotem and Ran Locar found an Elasticsearch server leaking five million logs containing customer data. The database recorded any errors and the plaintext data associated with it, including customer data. Data seen by TechCrunch reveals customer names, email addresses, phone numbers, postal addresses, dates of birth, customer types, and Freedom Mobile account numbers. “We have discovered that the data that was exposed was contained to a very small number of customers who had opened or made any changes to their accounts at 17 Freedom Mobile retail locations from March 25 to April 15, and any customers who made changes or opened accounts on April 16,” he said. “Our investigation has revealed that a very limited amount of Freedom Mobile customer data was exposed as the result of a misconfigured server managed by Apptium, a new third-party service provider Freedom Mobile has engaged to streamline our retail customer support processes.” A forensic investigation is underway, the spokesperson said.