PeopleGrove security lapse exposed users personal information
- It’s also unclear why the apparent test database contained real people’s information.TechCrunch verified a portion of the exposed data by matching contact information using public records, social media profiles and other career social networks like LinkedIn.
- One user, whose profile said they served as a U.S. intelligence officer, had details of their former top secret security clearance exposed in their user record, along with their home address, personal email address and phone number.
- The records also contained links to the user’s profile photo.None of the exposed data was encrypted.CloudDefense cloud security researcher Anurag Sen discovered the database on Thursday and contacted TechCrunch so we could notify PeopleGrove.
PeopleGrove confirmed Thursday that its investigating after a security lapse exposed users personal information online.The company, formerly CampusKudos, which provides and hosts a social platfor [+2419 chars]