Catch up on stories from the past week (and beyond) at the Slashdot story archive

 



Forgot your password?
typodupeerror

Slashdot videos: Now with more Slashdot!

  • View

  • Discuss

  • Share

We've improved Slashdot's video section; now you can view our video interviews, product close-ups and site visits with all the usual Slashdot options to comment, share, etc. No more walled garden! It's a work in progress -- we hope you'll check it out (Learn more about the recent updates).

×
Security

+ - Exposed: Indian visa application data accessible t

Submitted by
jenwren1010
jenwren1010 writes "http://www.daniweb.com/blogs/entry1466.html A DaniWeb investigation uncovers huge gaping hole in website security of company that provides official visa application services for Indian citizens wishing to enter the US and UK. By simply changing part of the URL it has been possible to access the complete personal data of anyone who has made an application, including passport numbers, names, address, employer, parental information, travel plans and so on. Worse, the company were first informed of the vulnerability, by a concerned Indian citizen, over a year ago and did nothing. Considering these people work on behalf of the government, and the terrorist implications of being able to access all that visa application data are obvious, it is incredible that such Mickey Mouse security was allowed to go unchecked for so long."

365 Days of drinking Lo-Cal beer. = 1 Lite-year

Working...