.png "back to home page")
In a system with any accountability, this company would be shut down and its management put on trial. https://t.co/r5I6utibSE
— Dan Gillmor (@dangillmor) May 24, 2019
And thanks to the fact that Congress has done NOTHING on the issue of data privacy / security over the last 20 years, the company that put millions of people's sensitive financial information at risk will likely have zero consequences. https://t.co/EfGn78LIAU
— Fight for the Future (@fightfortheftr) May 24, 2019
I remember squashing Insecure Direct Object Reference bugs in the late '90s (TL;DR: don't allow no-auth direct file downloads, particularly keyed from obvious sequential GET IDs). This is a super rookie mistake. https://t.co/omcyoNBUtj
— Kenn White (@kennwhite) May 24, 2019
First American Financial Corporation, a provider of title insurance, said it fixed a vulnerability in its website that exposed 885 million records related to mortgage deals going back 16 years https://t.co/N0xQry42Wx
— The New York Times (@nytimes) May 25, 2019
Your latest reminder that there's still no federal law requiring companies to disclose when they lose your data... which reminds me, I guess I should write this year's version of that evergreen story. https://t.co/MggV7ufq44
— Rob Pegoraro (@robpegoraro) May 24, 2019
Equifax: We've exposed the SSNs of more Americans then any other single entity ever.
— Brian in Pittsburgh (@arekfurt) May 24, 2019
First American: Amateurs. Stand back and hold my beer... https://t.co/LGpfLRkG1i
Update: First American says it has hired an outside forensic firm to investigate whether mortgage records, bank accounts and more were actually accessed https://t.co/YNfqqPVUAW
— The Verge (@verge) May 24, 2019
First American Financial Corp. has fixed a weakness in its site that appears to have exposed more than 885 million records related to mortgage deals going back to 2003 https://t.co/joo3sdVDZF Data exposed: SSNs, bank acct info, DL scans, mortgage/tax records, wire details pic.twitter.com/nEKb51JjLj
— briankrebs (@briankrebs) May 24, 2019
Millions of financial records exposed on First American website, report says - CNET https://t.co/2sDFxC6MCm
— Jim Nitterauer (@JNitterauer) May 25, 2019
After another massive data breach, it's time to change your password. https://t.co/07qUBwlnNK
— USA TODAY (@USATODAY) May 25, 2019
There are simply no signs whatsoever that the data breach landscape is getting any better, quite the contrary: “First American Financial Corp. Leaked Hundreds of Millions of Title Insurance Records” https://t.co/xe3QrHftmc
— Troy Hunt (@troyhunt) May 25, 2019
Wow... First American had incremental document numbers and no authentication leaking “bank account numbers and statements, mortgage and tax records, Social Security numbers, wire transaction receipts, and drivers license images” back to 2003: https://t.co/bO9jBtRd01
— Nathan Peck (@nathankpeck) May 25, 2019
First American Financial Corp. Leaked Hundreds of Millions of Title Insurance Recordshttps://t.co/OG7wmxNgrF
— Niels Provos (@NielsProvos) May 25, 2019
The company’s website exposed bank account info, mortgage, tax records, Social Security numbers and driving license images in a sequential format, so anyone who knew a valid URL for a document only had to change the address by one digit to see other docs.https://t.co/Z5cNCYMzV0
— Jinson Varghese (@JinsonCyberSec) May 25, 2019
First American Financial left 885 million records exposed via insecure URLs https://t.co/x1q9FiZc7F pic.twitter.com/qP22ILF8Yy
— The Verge (@verge) May 24, 2019
First American Financial exposed 16 years’ worth of mortgage paperwork, including bank accounts https://t.co/qVhJFd0yw5 via @Verge
— Sean O'Kane (@sokane1) May 25, 2019
Fire the CEO & the entire board https://t.co/tQZr0Fhg2P
— Robert Stephens (@rstephens) May 25, 2019
A web design flaw in First American Financial Corporation's document transfer system was found to have left around 885 million files exposed on the web with no security.https://t.co/y0nQZ5AY9T
— Axios (@axios) May 25, 2019