(MENAFN- NewsBytes) Just as governments around the world continue to raise questions over thesecurityof their citizens' personal data, cases of breaches and leaks continue to increase.
A few days back, fingerprints of more than a million people were compromised, and now, in a similar case, a popular site serving pornographic content has exposed the personal data of its users.
Here's all about the incident.
Issue
Luscious leaked personal information of users
Popular porn site Luscious, which allows uploading pornographic images and animations under anonymized identities, recently suffered from a critical security vulnerability,The Next Webreported.
The issue was spotted by researchers at vpnMentor, who were then able to exploit it and mine personal information of more than a million people using the service for consuming or uploading adult content.
Information
What kind of information was exposed
While detailing the leak, vpnMentor claimed that the exploit allowed them to access emails of Luscious users, their genders as well as the names of the country they lived in.
They further added that the activities of these users on the site, including stuff like their comments, likes, uploads, and blog posts, were also accessed easily in an "unsecured and unencrypted" format.
Love Tech news?
Stay updated with the latest happenings.
Yes, notify Me
Risk
This posed a major security threat to Luscious users
The kind of information exposed by Luscious posed a major security threat to its users, vpnMentor argued.
They say that the email and countries of the users could've been used to target them with phishing, doxing, extortion while on-site activity could've given away more critical details like the type of content they liked/uploaded.
Notably, some email addresses even had full names of the users.
Fix
However, the issue has now been resolved
While the issue was critical, the researchers claim that it has now been resolved.
The team at Luscious was informed about the bug just a day after it was discovered, post which they worked and released a patch.
Having said that, it's worth noting that they have not commented on the matter and it remains unclear if anybody else got access to this information.
MENAFN2108201901650000ID1098906600
Legal Disclaimer:
MENAFN provides the information “as is” without warranty of any kind. We do not accept any responsibility or liability for the accuracy, content, images, videos, licenses, completeness, legality, or reliability of the information contained in this article. If you have any complaints or copyright issues related to this article, kindly contact the provider above.