Airportr, a luggage service used by 10 airlines, faced serious security vulnerabilities that allowed hackers to access user data and gain administrator privileges. CyberX9 researchers discovered these flaws, revealing personal information such as travel plans and the presence of government officials' details. The lack of security could lead to the complete exposure of confidential data. Airportr's CEO acknowledged the findings, confirming the potential for unauthorized access to sensitive customer information and operations, risking baggage control and personal privacy.
"Anyone would have been able to gain or might have gained absolute super-admin access to all the operations and data of this company," says Himanshu Pathak, CyberX9's founder and CEO. "The vulnerabilities resulted in complete confidential private information exposure of all airline customers..."
CyberX9 researchers found that simple bugs in Airportr's website allowed them to access virtually all of those users' personal information, including travel plans, or even gain administrator privileges that would have allowed a hacker to redirect or steal luggage in transit.
Collection
[
|
...
]