UK-based gym chain Total Fitness has been accused of sloppy security, following the discovery of an unsecured database containing the images of 470,000 members and staff – all accessible to anyone on the internet, no password required. A 47.7GB database belonging to the health club was discovered by cybersecurity researcher Jeremiah Fowler, who told  The Register he had also uncovered images of members’ identity documents, banking and payment card details, phone numbers, and even – in some cases – immigration records.

Source: Graham Cluley