"An app for anonymously reporting individuals accused of speaking ill against conservative activist Charlie Kirk leaked personal data about its users. The app, known as "Cancel the Hate," was taken offline on Thursday amid an investigation into the data leak by Straight Arrow News."
"Launched in the wake of Kirk's assassination on Sept. 10, Cancel the Hate aims to "hold individuals accountable for their public words," according to its website. It calls on users to "express concern" by submitting "intel" on alleged offenders, including their names, locations and employers."
"The flaw in the app, discovered by the security researcher who identifies himself as "BobDaHacker," enabled the exposure of user information such as email addresses and phone numbers. Although email addresses were included in profile bios by default, seemingly unbeknownst to many of the platform's users, the data could still be exposed even if privacy settings were enabled to keep it hidden."
Cancel the Hate allowed anonymous reporting of individuals accused of speaking ill about Charlie Kirk and solicited "intel" such as names, locations, and employers. The platform stated that users who submitted data would not have their own personal information publicly exposed. A security flaw discovered by a researcher identifying as "BobDaHacker" allowed exposure of user information including email addresses and phone numbers. Email addresses were included in profile bios by default and could be exposed even when privacy settings were enabled. The app was taken offline and an investigation into the data leak is underway.
Read at DataBreaches.Net
Unable to calculate read time
Collection
[
|
...
]