Schemata API Flaw Exposed Military Training Data and Service Member Records
Schemata, an AI-powered virtual training platform used by defense customers under active Department of Defense contracts, exposed cross-tenant data through API endpoints that lacked effective authorization checks. Researchers at Strix reported that a low-privilege account could access user listings, organization records, course information, training metadata, and direct AWS-hosted document links belonging to other tenants. The exposed material reportedly included confidential naval maintenance training content, Army field manuals covering explosive ordnance handling and tactical deployment, and service member records containing names, email addresses, enrollment details, and military base affiliations.
Researchers said the same authorization failures also affected write-enabled routes, creating the potential for unauthorized modification or deletion of training courses. Strix disclosed the issue privately on December 2, 2025 and said remediation took roughly 150 days despite repeated follow-ups; Schemata said it patched the exposed endpoints on May 1, 2026, found no evidence of third-party exploitation, and began working with cybersecurity consultants and government authorities. The exposure has intensified scrutiny of basic tenant-isolation controls and compliance obligations tied to protecting defense-related data, including Controlled Unclassified Information under DFARS 252.204-7012 and CMMC requirements.
Get ahead of threats like this
Mallory correlates global threat intelligence with your attack surface — know if you’re exposed before adversaries strike.
How this story unfolded
3 events from the most recent confirmed update back to the earliest known activity.
Schemata says no exploitation was found and authorities were engaged
After remediation, Schemata said it found no evidence that any third party exploited the vulnerability and stated it was working with cybersecurity consultants and government authorities. The company also said it remediated the issue the same day it received actionable details from a verified researcher.
Schemata patches exposed API endpoints
Schemata acknowledged the exposed endpoints and applied a patch after the vulnerability remained unremediated for roughly 150 days. Researchers later verified that the remediation was in place.
Strix privately discloses Schemata API flaw
Strix reported a zero-authorization flaw in Schemata's API to the company, describing cross-tenant access to military training materials and service member records. The issue reportedly allowed low-privilege users to access data across organizations due to missing authorization checks.
Related entities
Vulnerabilities, threat actors, malware, products, organizations, and breaches Mallory has linked to this story.
Sources
2 references tracked. Mallory keeps watching after this page renders.
See the full picture, correlated to your attack surface.
Map indicators from this story to your assets and identify affected systems in minutes.
Every observed campaign, victim, and pivot linked to actors named in this story.
Malware, exploits, and IOCs connected to the activity described here.
YARA, Sigma, and Snort rules deployed to your SIEM as soon as they’re published.
Get matching new stories delivered to your team as they break — not the next morning.
Ask questions about this story and take action on the answers.
Related stories
Other stories Mallory is tracking that overlap on entities, sources, or topic labels.
CMI Management Leak Exposed U.S. Military Base Files in Public Directory
A publicly accessible directory tied to U.S. government contractor **CMI Management Inc.** exposed more than **70,000 files** linked to U.S. military installations and personnel. Reports say the contractor, which provides facility management services to the **U.S. Army**, left records openly available for months through an open directory listing, allowing access to sensitive material including personnel records, contractor documents, maintenance forms, emails, schematics, and photographs taken inside military bases. The leak created risks including **phishing, impersonation, and intelligence gathering** against military facilities and staff. Researcher **Arkadeep Roy** reportedly alerted **CISA** in 2024 after the exposure was identified following a tip to Cybernews, but the files remained accessible as recently as March 2026, underscoring how long-lived misconfigurations at defense contractors can leave operationally sensitive government data exposed.
May 8, 2026
Multiple Misconfiguration and Access-Control Flaws Expose AI and SaaS Platforms to Data Theft and Account Takeover
Security researchers reported a **critical Moltbook** exposure caused by an unauthenticated database/API access issue that allowed enumeration of agent records (e.g., `GET /api/agents/{id}`) and leakage of **email addresses, JWT `login_token`s, and third-party `api_key`s**, enabling agent hijacking and downstream abuse of connected services. Separately, **Cal.com Cloud** was found vulnerable to a chained set of broken access controls and signup/invite-token logic flaws that enabled **complete account takeover** and access to sensitive booking data (attendee details, emails, and booking histories) at scale, including organizational accounts. In parallel, SentinelLabs documented that roughly **175,000 internet-exposed Ollama** instances were reachable due to common deployment misconfiguration (binding to `0.0.0.0`/public interfaces), creating conditions for **arbitrary code execution** and access to external resources—especially where tool-calling features were enabled. A distinct IoT case study described **Molekule** air purifiers exposing fleet-wide telemetry because an **AWS Cognito Identity Pool** permitted unauthenticated access to **AWS IoT Core MQTT** subscriptions, leaking device shadow data (e.g., Wi‑Fi SSIDs, MAC addresses, device names, sensor readings) for ~100,000 devices; the disclosed policy reportedly allowed read/subscribe access but not device control without per-device certificates.
Mar 21, 2026
CISA Contractor GitHub Repository Exposed AWS GovCloud Keys and Internal Credentials
A public GitHub repository tied to a contractor supporting the U.S. Cybersecurity and Infrastructure Security Agency (**CISA**) exposed plaintext passwords, access tokens, cloud keys, logs, spreadsheets, and deployment files that could provide access to CISA and Department of Homeland Security internal and cloud systems. Researchers from GitGuardian and Seralys reported that the repository, named **"Private-CISA"**, contained administrative credentials for three AWS GovCloud accounts as well as numerous credentials for internal CISA systems; some of the exposed secrets were verified as valid. The repository was reportedly linked to a Nightwing employee and appears to have been used as an informal working scratchpad rather than a controlled code repository, with commit history indicating GitHub secret-scanning protections had been disabled. After alerts to the contractor reportedly went unanswered, the issue was escalated and the GitHub account was taken offline, but exposed AWS keys were said to remain valid for roughly 48 hours after disclosure. CISA said it is investigating and that it had no indication the credentials were abused, though the incident represents a significant security lapse at the federal agency responsible for civilian cybersecurity.
Jun 1, 2026