Set as Homepage - Add to Favorites

【Watch Vagabond Online】

Source:Exquisite Information Network Editor:Games Time:2025-06-26 05:08:41

Look,Watch Vagabond Online we get it. Cybersecurity is hard. But maybe, just maybe, a conference dedicated to computer security and encryption should know better than to leave attendee information exposed via its conference mobile app.

And yet.

SEE ALSO: Tech conferences like RSA still have a diversity problem

As the RSA Conference winds down today in San Francisco organizers have been forced to acknowledge that all has not been right with their own house. Specifically, a security engineer looking into the RSA Conference Mobile App discovered that at least some user information was exposed to anyone who knew where to look.

"[It] was the API from http://eventbase.com that was used by the RSA conference app," the researcher, who goes by svbl, explained over Twitter direct message. "[The] vulnerability was on eventbase' side."

Svbl tweeted out the steps he took to access the information and alerted organizers to what might generously be called an oversight.

The RSA Conference responded and quickly resolved the vulnerability, but, shall we say, the response didn't really cop to the fact that organizers baked a vulnerability into their app.

Mashable Light Speed Want more out-of-this world tech, space and science stories? Sign up for Mashable's weekly Light Speed newsletter. By clicking Sign Me Up, you confirm you are 16+ and agree to our Terms of Use and Privacy Policy. Thanks for signing up!

"Our initial investigation shows that 114 first and last names of RSA Conference Mobile App users were improperly accessed," read a statement. "No other personal information was accessed, and we have every indication that the incident has been contained."

That only 114 first and last names were accessed isn't because of some magic cybersecurity protections. Rather, it's because svbl limited his probing to just a peek — merely to confirm the vulnerability — before reporting it.

Notably, this isn't the first time the RSA Conference has blundered with its conference app.

"This isn’t surprising," tweeted the engineer and hacker Ming Chow. "Let me remind you of the RSA Conference 2014 app that downloaded all attendees’ names into SQLite DB."

And, to make matters worse, this wasn't the only problem members of the cybersecurity community had with the conference app. Specifically, the permissions the app required raised a lot of eyebrows.

Thankfully for attendees, svbl appears to have had no ill intentions.

"[I] only pulled a sample of data (~100 records) before i reported it to RSA directly and as you saw they fixed it very quick (which is awesome)," the researcher wrote to us.

And while a fast response is great, still, come on. Security professionals like those at the RSA Conference shouldn't count on the goodwill of third-party researchers to keep attendee data secure. But somehow, though, that's exactly where we are.

Featured Video For You
Here's 5 tips for Spring cleaning your digital footprint

Topics Cybersecurity

Previous:5 Ways to Access a Locked Windows Account

Next:Sony launches new flagship XM6 headphones: Order them now

Related Articles
Related Recommendations
Categories
Latest Articles
Popular Articles
Hot Recommendations
Featured Column

Quick Links

Amazon is pulling its second HQ out of NYC, and people are delighted'The Lord of the Rings: The Rings of Power' is a show for horse girlsMan spotted skiing with the help of a horse'Quordle' today: See each 'Quordle' answer and hints for September 26Build a massive library of PC games with a Humble Choice membership for just $12 per month'Quordle' today: See each 'Quordle' answer and hints for September 27Wordle today: Here's the answer, hints for September 26'Quordle' today: See each 'Quordle' answer and hints for September 24Netflix's 'Drifting Home' is worth watching for the animation aloneiPhone 14's crash detection feature put to the (crash) test by YouTubersHow to watch 'Andor'Dozens of white supremacist artists streaming on Spotify, report findsNot nice: Trump just ruined 69 jokes'Billionaire's son' Bobby Misner knows YouTube doesn't like himTony Gilroy reveals the future of 'Star Wars: Andor'Starlink speeds drop as customer base for Elon Musk's satellite internet growsTony Gilroy reveals the future of 'Star Wars: Andor''Quordle' today: See each 'Quordle' answer and hints for September 27Wordle today: Here's the answer, hints for September 26This app brings the Dynamic Island to Android phones Donald Trump mocked #MeToo and said Elizabeth Warren should take a DNA test. She is not amused. Chrissy Teigen shuts down criticism over breastfeeding Instagram 'Our Flag Means Death's real Meet the YouTuber who's been making musical instruments out of produce for 11 years Microsoft engineer shares her immigration story and sheds light on a broken system YouTube star Ryker Gamble dies after falling from waterfall Scott Pruitt’s resignation has inspired as many memes as he had scandals The most memorable moments of Elon Musk so far in 2018. Wikimedia is against European Parliament's Copyright Directive NVIDIA Hackers: Let us mine cryptocurrency faster or we release your stolen data Apple is reportedly planning an event in March. Here's what to expect. Ariana Grande didn't find Pete Davidson's joke about Manchester bombing funny Microsoft says it's suspending new sales in Russia A voice coach weighs in on Julia Garner's 'Inventing Anna' accent. Grandpa accidentally films himself instead of marriage proposal Beyoncé laughing at Jay Reddit bans all links to Russian state Airbnb offers Ukrainian refugees free, temporary housing Uber Explore adds activities to the ride 'The Batman' Review: It's time for an R

2.5949s , 10131.6484375 kb

Copyright © 2025 Powered by 【Watch Vagabond Online】,Exquisite Information Network  

Sitemap

Top

Quick Links