Today’s E-paper

Bug that exposed visitors' personal information fixed by WeWork India

05 July,2022 06:43 PM IST |  New Delhi  |  IANS

I recently uncovered a security vulnerability in the WeWork app that exposed all visitors` PII (Personally identifiable information) data, tweeted Hodkasia, who is Co-founder of AppSecure

Representational images. Pic/iStock


As per reports, a cyber-security research has claimed that WeWork India exposed the personal information and selfies of over a thousand people who visited its co-working facilities across India.

Security researcher Sandeep Hodkasia found unencrypted visitor data that got exposed owing to a bug in the check-in app on WeWork India's website.

The vulnerability exposed visitors' names, phone numbers, email addresses and selfies.

"I recently uncovered a security vulnerability in the WeWork app that exposed all visitors' PII (Personally identifiable information) data," tweeted Hodkasia, who is Co-founder of AppSecure.

PII is any information about an individual maintained by an agency that can be used to distinguish or trace an individuals identity, such as name, social security number, date and place of birth, mother's maiden name, or biometric records and any other information that is linked to an individual, such as medical, educational, financial, and employment information.

WeWork India later fixed the bug that exposed the personal information and selfies of visitors.

A WeWork India spokesperson told IANS that its website "had a bug that allowed unintentional access to the basic visitor information."

"WeWork India is in the midst of transitioning its website" and that its recent changes "mitigated" the exposure, the spokesperson added.

The company, however, did not elaborate on exactly how many visitors were impacted and whether it notified them about the data breach owing to the bug.

WeWork India is currently present at more than 40 locations with over 62,000 members.

Also Read: Let's adopt technology as a tool to fight crimes

This story has been sourced from a third party syndicated feed, agencies. Mid-day accepts no responsibility or liability for its dependability, trustworthiness, reliability and data of the text. Mid-day management/mid-day.com reserves the sole right to alter, delete or remove (without notice) the content in its absolute discretion for any reason whatsoever

"Exciting news! Mid-day is now on WhatsApp Channels Subscribe today by clicking the link and stay updated with the latest news!" Click here!
tech news
Related Stories