Forgot your password?
typodupeerror
Security

+ - Exposed: Indian visa application data accessible t

Submitted by
jenwren1010
jenwren1010 writes "http://www.daniweb.com/blogs/entry1466.html A DaniWeb investigation uncovers huge gaping hole in website security of company that provides official visa application services for Indian citizens wishing to enter the US and UK. By simply changing part of the URL it has been possible to access the complete personal data of anyone who has made an application, including passport numbers, names, address, employer, parental information, travel plans and so on. Worse, the company were first informed of the vulnerability, by a concerned Indian citizen, over a year ago and did nothing. Considering these people work on behalf of the government, and the terrorist implications of being able to access all that visa application data are obvious, it is incredible that such Mickey Mouse security was allowed to go unchecked for so long."

The world is not octal despite DEC.

Working...