Over 400,000 German Students Data Leaked by a Flawed API

Posted on October 28, 2021 by Dissent

Manikanta Immann reports:

Scoolio is a german app for students, used mainly for educational updates, record keeping, and networking. After informing the flaw to Scoolio’s developer, a fix was released this week to patch the bug.

[…]

In September, a security researcher named Lilith Wittmann of Zerforchung firm has discovered a flawed API in Scoolio, through which she was able to access the personal data of nearly 400,000 users.

Read more on TechRadar.

How a hacking gang held Italy’s political elites to ransom
Uncovering Qilin attack methods exposed through multiple cases
Predatory Sparrow Strikes: Coordinated Cyberattacks Seek to Cripple Iran's Critical Infrastructure
Ex-CISA head thinks AI might fix code so fast we won't need security teams
On Reports of an Alleged Data Breach Involving G-Xchange, Inc. (GCash)
ModMed revealed they were victims of a cyberattack in July. Then some data showed up for sale.

Category: Business SectorCommentaries and AnalysesEducation SectorExposureNon-U.S.Subcontractor

Related: