USPS Site Exposed Data on 60 Million Users

Brian Krebs reports:

U.S. Postal Service just fixed a security weakness that allowed anyone who has an account at usps.com to view account details for some 60 million other users, and in some cases to modify account details on their behalf.

KrebsOnSecurity was contacted last week by a researcher who discovered the problem, but who asked to remain anonymous. The researcher said he informed the USPS about his finding more than a year ago yet never received a response. After confirming his findings, this author contacted the USPS, which promptly addressed the issue.

Read more on KrebsOnSecurity.com.

Protected health information of 462,000 members of Blue Cross Blue Shield of Montana involved in Conduent data breach
TX: Kaufman County Faces Cybersecurity Attack: Courthouse Computer Operations Disrupted
Hotel and Casino near Las Vegas Strip suffers data breach, documents say
Attorney General James Announces Settlement with Wojeski & Company Accounting Firm
JFL Lost Up to $800,000 Weekly After Cyberattack, CEO Says No Patient or Staff Data Was Compromised
Before Their Telegram Channel Was Banned Again, ScatteredLAPSUS$Hunters Dropped Files Doxing Government Employees (2)

1 thought on “USPS Site Exposed Data on 60 Million Users”

One frustrating aspect of breaches at government sites has for me is that the government is fining businesses for similar breaches but the only thing that happens to the government when they do the same thing is “whoops.”

Comments are closed.

Related:

1 thought on “USPS Site Exposed Data on 60 Million Users”