Topic: security lapse

Sort by: Relevance | Date
  • Petco's Vetco Website Breach Exposes Customer Data
    December 11, 2025
    95%

    Petco's Vetco Website Breach Exposes Customer Data

    A major security lapse on Petco's Vetco Clinics website exposed extensive personal customer and pet data, including medical histories and owner signatures, due to an unprotected PDF-generating page. The vulnerability was an insecure direct object reference (IDOR) flaw, allowing unauthorized acces...

    Read More »
  • UStrive Data Breach Exposed Children's Personal Information
    January 21, 2026
    88%

    UStrive Data Breach Exposed Children's Personal Information

    A data breach at UStrive exposed sensitive personal information of users, including minors, due to a misconfigured GraphQL endpoint that allowed unauthorized access to private data. The vulnerability potentially impacted at least 238,000 user records, and the company has not committed to notifyin...

    Read More »
  • Home Depot's internal systems were exposed for a year, researcher finds
    December 13, 2025
    40%

    Home Depot's internal systems were exposed for a year, researcher finds

    A Home Depot employee accidentally exposed a private access token online for nearly a year, granting extensive privileges to internal systems, including source code repositories and critical operational platforms. Security researcher Ben Zimmermann discovered the vulnerability but received no res...

    Read More »

Related Topics

data breach (3) techcrunch investigation (2) corporate response (1) executive response (1) security measures (1) security remediation (1) vulnerability disclosure (1) children's data (1)