Head Topics

FAANGs failing on keeping user data safe from bug hunters

Ireland News News

FAANGs failing on keeping user data safe from bug hunters
Ireland Latest News,Ireland Headlines
  • 📰 TheRegister
  • ⏱ Reading Time:
  • 48 sec. here
  • 2 min. at publisher
  • 📊 Quality Score:
  • News: 23%
  • Publisher: 61%

Time to call in the legal team

Dylan Ayrey, a bug hunter and CEO of Truffle Security, discovered a big data company credential dump containing personal information belonging to about 50,000 of its users, and still hasn't fixed it., and through the disclosure and reporting process, this data passed through several third-party systems.The bug bounty platform, XXS Hunter and Gmail, among them, not to mention his own hard drive and backups.

Ayrey detailed this bug hunting expedition onstage at the Black Hat conference in Las Vegas, and the punch line is that this isn't an isolated experience. There's a ton of personal data stored on researchers' laptops and bug bounty platforms, some of which don't require multi-factor authentication to access, Ayrey said.

Two years after finding the bug, Ayrey said he could still log in and access all of that user data. He asked Google to delete the ticket. Nothing happened."Until a couple of days ago, when I shared an advance copy of the slide deck with them, he said, showing an email he received in response. It said:

While the Google story had a happy ending, another similar incident ended differently. This one involved"a lot fewer user records" from a"pretty large, significant company" that had previously given Ayrey permission to name them in his session.Why do data leaks happen?

We have summarized this news so that you can read it quickly. If you are interested in the news, you can read the full text here. Read more:

TheRegister /  🏆 67. in UK

Ireland Latest News, Ireland Headlines

Similar News:You can also read news stories similar to this one that we have collected from other news sources.

NHS nurses 'ready to strike' for first time as they demand pay increaseNHS nurses 'ready to strike' for first time as they demand pay increaseNHS nurses in England and Wales are ready to strike for the first time in a pay row. Royal College of Nursing bosses have urged their half a million members to vote for action in a ballot next mont…
Read more »

Night-time road closures for amended Waddington resurfacing worksNight-time road closures for amended Waddington resurfacing worksNight-time road closures for amended Waddington resurfacing works Lincoln
Read more »

Text messages between Ryan Giggs and Kate Greville made public for first timeText messages between Ryan Giggs and Kate Greville made public for first timeRyan Giggs is currently in court facing allegations of controlling behaviour and assault towards his ex-partner Kate Greville. The former football star denies all allegations
Read more »

Soryia Siddique: It's time for a Green New Deal to put a stop to this exploitationSoryia Siddique: It's time for a Green New Deal to put a stop to this exploitation'The Tory contenders for Prime Minister are clearly not serious about this crisis.' | ✍️SoryiaGlasgow
Read more »

2022 NASCAR at Richmond - Start time, how to watch, entry list & more2022 NASCAR at Richmond - Start time, how to watch, entry list & moreWith just three races to go in the regular season, NASCAR is back on a short track this weekend. Everything you need to know heading into RichmondRaceway:
Read more »

'300-year-old' NI oak that inspired Narnia shortlisted for Tree of the Year 2022'300-year-old' NI oak that inspired Narnia shortlisted for Tree of the Year 2022This year's national contest celebrates 'living legends' that have withstood the test of time
Read more »



Render Time: 2025-04-02 00:29:50