Organizers of one of the Middle East’s biggest business and investment summits appear to have inadvertently exposed passport details and other identity information of some 700 attendees, including former British Prime Minister David Cameron and former White House communications director Anthony Scaramucci.
An independent security researcher found the sensitive data sitting unprotected on a cloud storage system associated with Abu Dhabi Finance Week (ADFW), according to London’s Financial Times, the first to report on the incident. The researcher, whom the Financial Times identified as Roni Suchowski, apparently discovered the data using off-the-shelf software for scanning cloud services for unsecured and publicly accessible data.
A Treasure Trove of Data?
In addition to the passports, ID cards, and other personally identifiable data, Suchowski reportedly also found thousands of other documents associated with the ADFW summit on the same server. The researcher told the FT that the data may have been lying unprotected and publicly accessible for at least two months. An FT review of a sample of the exposed documents showed that besides Cameron and Scaramucci, other high-profile individuals who were affected included hedge fund billionaire Alan Howard; Richard Teng, co-CEO of cryptocurrency exchange Binance; and the EU’s ambassador to the UAE, Lucie Berger.
Suchowski disclosed the leak to the Financial Times after futile attempts to inform the ADFW about it. According to the FT, ADFW secured the server after the media outlet inquired about the issue with them.
“ADFW takes, and has always taken, data protection and platform security extremely seriously, and any breaches of security are also taken with utmost seriousness,” the FT quoted the organization as saying. “The environment was secured immediately upon identification, and our initial review indicates that access activity was limited to the researcher that identified the issue.”
Abu Dhabi Finance Week is considered one of the premier financial events in the Middle East and North Africa (MENA) region. It is hosted annually by Abu Dhabi Global Market, (ADGM) the emirate’s international financial center. Since launching in 2022, ADFW has grown rapidly in stature and reputation. The 2025 summit, held under the patronage of the Crown Prince of Abu Dhabi, drew 35,000 attendees from more than 180 countries with representatives from firms managing more than $62 trillion in assets, or 53% of global GDP.
Wrong Signal
The data exposure is a reputational blow to Abu Dhabi at a moment when the emirate is trying to establish itself as a top global financial center alongside New York, London, and Singapore. During ADFW, the emirate launched a new FinTech, Insurance, Digital and Alternative Assets cluster, an economic development initiative. It’s projected to add $15 billion to Abu Dhabi’s GDP by 2045 and the emirate is actively courting international investors with promises of progressive regulatory oversight and political stability.
Against this backdrop, the exposure of sensitive data belonging to former heads of government, cryptocurrency CEOs, and hedge fund billionaires is likely to send the wrong kind of message to potential investors.
“This leak represents a huge failure in operational security, and an embarrassing one,” said Cassius Edison, chief operations officer (COO) of Closed Door Security. “To host a conference of prominent politicians and business leaders and to not ensure their data is held securely in the most basic way is a huge blunder on the part of ADFW.” Had this data been accessed and stolen by criminals or malicious actors, it could’ve destroyed the conference’s credibility entirely, he added in emailed comments.
