“I recently uncovered a security vulnerability in the WeWork app that exposed all visitors’ PII (Personally identifiable information) data,” tweeted Hodkasia, who is Co-founder of AppSecure
Representational images. Pic/iStock
As per reports, a cyber-security research has claimed that WeWork India exposed the personal information and selfies of over a thousand people who visited its co-working facilities across India.
Security researcher Sandeep Hodkasia found unencrypted visitor data that got exposed owing to a bug in the check-in app on WeWork India’s website.
The vulnerability exposed visitors’ names, phone numbers, email addresses and selfies.
“I recently uncovered a security vulnerability in the WeWork app that exposed all visitors’ PII (Personally identifiable information) data,” tweeted Hodkasia, who is Co-founder of AppSecure.
PII is any information about an individual maintained by an agency that can be used to distinguish or trace an individuals identity, such as name, social security number, date and place of birth, mother’s maiden name, or biometric records and any other information that is linked to an individual, such as medical, educational, financial, and employment information.
WeWork India later fixed the bug that exposed the personal information and selfies of visitors.
A WeWork India spokesperson told IANS that its website “had a bug that allowed unintentional access to the basic visitor information.”
“WeWork India is in the midst of transitioning its website” and that its recent changes “mitigated” the exposure, the spokesperson added.
The company, however, did not elaborate on exactly how many visitors were impacted and whether it notified them about the data breach owing to the bug.
WeWork India is currently present at more than 40 locations with over 62,000 members.
Also Read: Let’s adopt technology as a tool to fight crimes
This story has been sourced from a third party syndicated feed, agencies. Mid-day accepts no responsibility or liability for its dependability, trustworthiness, reliability and data of the text. Mid-day management/mid-day.com reserves the sole right to alter, delete or remove (without notice) the content in its absolute discretion for any reason whatsoever
Stay connected with us on social media platform for instant update click here to join our Twitter, & Facebook
We are now on Telegram. Click here to join our channel (@TechiUpdate) and stay updated with the latest Technology headlines.
For all the latest Technology News Click Here
