1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Database for Microsoft Careers mobile site was leaking data, vulnerable to attack

Discussion in 'Network World' started by RSS, Feb 14, 2016.

  1. RSS

    RSS New Member Member

    If you want to work at Microsoft, then you likely have visited Microsoft Careers. The backend database for the mobile version of Microsoft’s jobs portal was misconfigured, exposing user information and leaving the site vulnerable to attack.

    Security researcher Chris Vickery has a knack for exposing leaky databases such the one that put 13 million MacKeeper users at risk, another which exposed personal information of 191 million voters, yet another held 18 million voter records with targeted profile data, and one that exposed 140,000 class and student records from Southern New Hampshire University; he also discovered a leaked Hello Kitty database with 3.3 million user accounts, some belonging to kids. This time, Vickery said he found another misconfigured MongoDB database which exposed registered users’ information and had write-access to the contents of the database.

    To read this article in full or to leave a comment, please click here

    Continue reading...
     

Share This Page