I think there is a small problem with the list.
You unintentionally exposed a whole lot of subdomains. For example (
<number of subdomains> <domain>)
- 35581 keenetic.io
- 26693 hybris.com (idk what is it but it redirects to sap.com so …)
- 18931 mongodb.net
- 2070 synology.me
Another bad thing you exposed are some phpmyadmin subdomains which where surely supposed to be hidden from public like phpmyadmin89g7dioj3k4sd.example.com.
I guess you should remove caa-rechecking-incident-affected-serials.txt.gz from public access asap and notify at least the above mentioned parties on the leak.