back to article Error-bnb: Techies scramble to fix Airbnb website bug that let strangers read each others' account messages

Airbnb says it has fixed a baffling bug in its website that briefly caused some of its users to be shown messages belonging to others when viewing their account inboxes. The rent-out-your-home app maker said the problem occurred on Thursday between 0930 and 1230 PT, and affected punters who were logged into its desktop or …

  1. Anonymous Coward
    Anonymous Coward

    Airbnb

    Shudder, no thanks.

  2. FILE_ID.DIZ
    Flame

    Ahh! The classic cookie clearing fix to the rescue...

    "We're on the phone with Airbnb who at first was just like, clear your cookies."

    I guess first-line tech support are first-line for a reason... but the horror if this could have been caused simply by cookies....

    The (or a, now) golden rule.... never trust the client.

    1. Doctor Syntax Silver badge

      Re: Ahh! The classic cookie clearing fix to the rescue...

      Never trust the server either.

    2. Pascal Monett Silver badge

      Re: Ahh! The classic cookie clearing fix to the rescue...

      Indeed. If I had heard that I would have replied that if my cookies allowed me to see other people's data, then the problem is a lot bigger than I would have thought.

      "Hello, bank ? I have access to your CEO's account."

      "Clear your cookies and call back."

      "Really ? Well don't mind if I make a transfer first."

      Ridiculous.

  3. Efer Brick

    Mr Fuckuppy

    Booked in...

  4. John Brown (no body) Silver badge
    FAIL

    Funny how...

    ...it's always "a small subset of users". Especially when the "small subset" is many 1000's of people and sometimes they eventually admit it was most if not all of their userbase.

    1. Hawkeye Pierce

      Re: Funny how...

      The thing is, for almost any website which has a significantly large and global number of users, the majority are NOT using the system at any point in time.

      And so a problem which would affect ALL users will actually only be affecting a "small subset" - even if that happens to be 100% of all those actually using the system during the affected period!

  5. K Cartlidge

    The worrying thing about platforms

    The worrying thing about platforms is that no matter how good their techies, or their software, or their infrastructure, or their testing, or whatever else, all it takes is for one little thing to go wrong in an entire stack of interconnected software and hardware and suddenly there are issues. There is often no such thing as genuinely safe data (even when it is encrypted, as the platform still needs to be able to decrypt it).

    How happy would the public be if they *really understood* that the difference between their information (with it's myriads of public/private settings, two-factor, encryption, and so forth) and a breach could be nothing more than a single bit/byte flag somewhere being incorrectly set.

    They naively imagine that private stuff is kept separate, as if the digital version of a vault is somehow similar to a physical one. Years of private social media use, porn habits, banking records, the whole lot is as fragile as one bad line of code or dodgy cache or misconfiguration slipping through the net.

    Our future privacy is extremely fragile, even when entrusted to the best of the platforms (not specifically meaning Airbnb here).

  6. Korev Silver badge

POST COMMENT House rules

Not a member of The Register? Create a new account here.

  • Enter your comment

  • Add an icon

Anonymous cowards cannot choose their icon

Biting the hand that feeds IT © 1998–2021