Stories
Slash Boxes
Comments

SoylentNews is people

posted by martyb on Saturday April 21 2018, @10:07PM   Printer-friendly
from the trial-by-fire dept.

From Ars Technica:

A mobile application built by a third party for the RSA security conference in San Francisco this week was found to have a few security issues of its own—including hard-coded security keys and passwords that allowed a researcher to extract the conference's attendee list. The conference organizers acknowledged the vulnerability on Twitter, but they say that only the first and last names of 114 attendees were exposed.

The vulnerability was discovered (at least publicly) by a security engineer who tweeted discoveries during an examination of the RSA conference mobile app, which was developed by Eventbase Technology. Within four hours of the disclosure, Eventbase had fixed the data leak—an API call that allowed anyone to download data with attendee information.

[...] This is the second time an RSA mobile application has leaked attendee data. In 2014, an application built by another developer, QuickMobile, was found by Gunter Ollmann (who was that time at IOactive) to have a SQLite database containing personal information on registered attendees.

Also at ITWire.


Original Submission

 
This discussion has been archived. No new comments can be posted.
Display Options Threshold/Breakthrough Mark All as Read Mark All as Unread
The Fine Print: The following comments are owned by whoever posted them. We are not responsible for them in any way.
  • (Score: 3, Funny) by realDonaldTrump on Saturday April 21 2018, @11:08PM (1 child)

    by realDonaldTrump (6614) on Saturday April 21 2018, @11:08PM (#670187) Homepage Journal

    So many people in this world, not so many first names. Not so many last names. So A LOT of people have the same first name & last name. I like to put my middle name (initial J) so I don't get mixed up with another guy. And I put my name in the phone book, it's no secret. The more I get my name out there, the more business I get. Wasn't there a guy, he put his Social Security # on TV. Very foolish, right? But he was fine, supposedly he was fine. Rachel Maddow (MSNBC) stole my Income Tax Return for 2005. Or somebody stole it for her. And she put it on TV. Terrible! But nothing happened to me, I'm doing great. And believe me, you'll see so many more of my Income Tax Returns. Once the IRS finishes its audit I'll release them. Obviously I can't release them while I'm being audited!

    Starting Score:    1  point
    Moderation   +1  
       Funny=1, Total=1
    Extra 'Funny' Modifier   0  
    Karma-Bonus Modifier   +1  

    Total Score:   3  
  • (Score: 2) by MichaelDavidCrawford on Sunday April 22 2018, @02:44PM

    by MichaelDavidCrawford (2339) Subscriber Badge <mdcrawford@gmail.com> on Sunday April 22 2018, @02:44PM (#670357) Homepage Journal

    Here's mine: 518-92-8663.

    Don't say I never did nothin' fer ya.

    --
    Yes I Have No Bananas. [gofundme.com]