This weekend, members of the UK’s Conservative Party kicked off their annual conference in Birmingham, using the event to highlight their plans and priorities for the coming year. This year’s event had a rocky start: its official app allowed users to access personal contact information of other attendees, without a password.
According to the BBC, the app had a button that allowed users to press a button and enter an attendee’s e-mail address, which gave them access without prompting them for a password. Several attendees reported that they were not only able to access non-public information in the accounts of various party members such as phone numbers and e-mail addresses, but they could also change said information. Various…
from The Verge – All Posts https://ift.tt/2xNFvhV
via IFTTT