Create accountLogin

Recent searches

No recent searches

Search options

Only available when logged in.
mastodon.social is one of the many independent Mastodon servers you can use to participate in the fediverse.
The original server operated by the Mastodon gGmbH non-profit

Administered by:

Server stats:

355K
active users

mastodon.social: AboutStatusProfiles directoryPrivacy policy

Mastodon: AboutGet the appKeyboard shortcutsView source codev4.4.0-nightly.2025-03-25

maschmi

Oh boy. A simple could be used to read credit offers at and , two big German portal offering a lot of things around comparing credit offers, insurance contracts and other things.

This is such a trivial mistake, it nearly feels deliberate. This should never ever happend. And for sure this should have be a red flag in any . I wonder how they can state "No indications of miss use.".

Article in German:
correctiv.org/aktuelles/datens

correctiv.org · Kreditvermittlung bei Check24 und Verivox: Kritische Datenlecks entdecktBy Jean Peters
Sep 18, 2024, 10:08 AM·Public·Tusky
0boosts·1favorite
Quiet public
maschmi

And just to be very clear: this is not single developers, or single teams making a mistake. This looks like a problem in the organizations.

Such attacks are well known and must be included in any basic training for , especially . Such are one of the first things a should test, find and report. If and claim to have done some, either they did not act on the findings or executed them very badly.

ExploreLive feeds
About