Oink Privacy Hole Exposes Everything You’ve Uploaded

Mark Hachman reports:

A Pulse employee discovered a security hole in Oink on Friday, which allows anyone to download personal information belonging to another, just by knowing their username.

PCMag was able to confirm the breach the same way Cristina Cordova, a former Google employee now working in business development for Pulse, did: by downloading the photos and rankings of Milk Inc. and Digg founder Kevin Rose.

The folder was also tagged with Rose’s Gmail address.

Read more on PCMag.com

About the author: Dissent

Comments are closed.