Fasten data leak: Nearly 1 million users’ sensitive data mistakenly exposed by US ride-hailing firm

India Ashok reports:

Over one million users’ personal and financial data was inadvertently publicly exposed by US-based ride hailing firm Fasten. The leaked data includes names, emails, phone numbers, credit card data, links to photos, device IMEI numbers, GPS data and users’ taxi routes.

The firm also exposed sensitive information of its own drivers, including drivers’ car registration and license plate records as well as detailed individual profiles. According to Kromtech security researchers, who uncovered the breach, the data exposure was caused by an unsecured Apache Hive database.

Read more on IBT.

About the author: Dissent

Comments are closed.