From Ars Technica:
A mobile application built by a third party for the RSA security conference in San Francisco this week was found to have a few security issues of its own—including hard-coded security keys and passwords that allowed a researcher to extract the conference's attendee list. The conference organizers acknowledged the vulnerability on Twitter, but they say that only the first and last names of 114 attendees were exposed.
The vulnerability was discovered (at least publicly) by a security engineer who tweeted discoveries during an examination of the RSA conference mobile app, which was developed by Eventbase Technology. Within four hours of the disclosure, Eventbase had fixed the data leak—an API call that allowed anyone to download data with attendee information.
[...] This is the second time an RSA mobile application has leaked attendee data. In 2014, an application built by another developer, QuickMobile, was found by Gunter Ollmann (who was that time at IOactive) to have a SQLite database containing personal information on registered attendees.
Also at ITWire.
(Score: 2, Informative) by Anonymous Coward on Saturday April 21 2018, @10:12PM (1 child)
There is a low barrier to entry to writing software.
The median person is really stupid, and nearly half of people are even dumber than that. What else is programming other than encoding one's thoughts? Well, that's a whole lot of stupid being encoded into machine action.
Seriously, folks. You cannot get dumber than this:
There's nothing else to say about that. Especially today, that's about as dumb as it gets.
If you're a relatively smart person, then you've already concluded that the best thing to do is to remove from your life as much technology as possible.
(Score: 0) by Anonymous Coward on Sunday April 22 2018, @12:29AM
There's a reason IQ scores across populations are measured at the median and not the mean. It's not "nearly half" of people, [googleusercontent.com] it is most people. [wikipedia.org]