A security researcher discovered the United Nations accidentally published sensitive information to several different outlets, The Intercept reports. Kushagra Pathak found the data on the project management service Trello, issue-tracking app Jira, and Google Docs. The information was available to anyone who had the correct URL and included passwords, internal documents, and details about websites. Pathak first notified the U.N. about the leaked information Aug. 20 and, after a back-and-forth correspondence, started taking down the data Sept. 13. “We take security very seriously and have reached out to all staff reminding them of the risks of using a third-party platform to share content and to take the necessary precautions to ensure no sensitive content is public,” U.N. Spokesperson Florencia Soto Nino-Martinez said.
If you want to comment on this post, you need to login.