SAN FRANCISCO – Usernames and passwords leaked onto the open internet earlier this month because of a security bug that affected 3,400 websites, including popular services like Uber, Fitbit and OkCupid.
You wouldn’t mind if someone could break into the personal accounts you use to track your movements, your fitness and your love life, would you?
While there’s no indication that hackers actually accessed usernames and passwords, or a wealth of other private data that people sent over the services, the information was exposed both on corrupted versions of the websites and in cached results on search services like Google and Bing.
“The bug was serious because the leaked memory could contain private information and because it had been cached by search engines,” John Graham-Cumming, chief technical officer of cybersecurity company Cloudflare, wrote Thursday in a blog post detailing the flaw.
To read the rest of this column on CNET, click on https://www.cnet.com/news/cloudbleed-uber-fitbit-okcupid-cybersecurity-password-information-exposed-wide-reaching-flaw/?ftag=CAD2e9d5b9&bhid=20102274281679224800074149012732
