🇲🇽 Cargamos.com, a package delivery company was exposing over 6 million files for over a year.
I've always opted to keep trying some other way to get a server closed instead of going public about the issue until earlier this week.
I've contacted multiple GOV/CERT emails in Mexico over multiple issues and I never got a meaningful reply.
The company ignored my contact, so I either let it go and see it posted eventually by some "ransomware" group or I make enough noise publicly that the company will get alerted about it.
Today, 2 days after an article came out on a Mexican news website, the exposure was closed down.
Read the article, in Spanish, that made the company close the server down: