Sign in / up

back to article FAANGs failing on keeping user data safe from bug hunters

Dylan Ayrey, a bug hunter and CEO of Truffle Security, discovered a big data company credential dump containing personal information belonging to about 50,000 of its users, and still hasn't fixed it.  This happened while he was researching cross-site scripting (XXS) vulnerabilities, and through the disclosure and reporting …

COMMENTS

Post your comment
House rules Send corrections
Add to 'My topics' unstar *
  1. ecofeco Silver badge

    This can't be true!

    I've been assured by impeccable sources that the cloud is a perfectly safe place for all my data and operations!

    Impeccable! Sources!

    6 0 Reply
    1. Anonymous Coward
      Reply Icon
      Anonymous Coward

      Re: This can't be true!

      Many years ago, a data security expert told me that

      'Any repository of your information that you do not directly control is by implication, NOT TO BE REGARDED AS SECURE'

      He went on to say

      "If you do not regularly

      test the ability of your information store to repel intruders both physical and electronic on a regular basis, you should not be let anywhere near the data held on that store"

      As far as I'm concerned, 'the cloud' is insecure. Sadly the stable door was breached far too many years ago for my concerns to matter one little bit.

      4 0 Reply
  2. Pascal Monett Silver badge

    "Don't send private information over email"

    When will people learn that email is to be treated like shouting in the street ?

    PAY ATTENTION.

    If you're not sending mail to someone you know personally, it is a professional email and its contents should be controlled.

    5 0 Reply

POST COMMENT House rules

Not a member of The Register? Create a new account here.

Forgotten password ?

  • Enter your comment

  • Add an icon

Anonymous cowards cannot choose their icon

Other stories you might like