Despite being alerted to the API key breach two weeks prior, IA has failed to take necessary actions like rotating the exposed GitLab secrets, exposing sensitive data.
The compromised Zendesk token grants access to over 800K support tickets, putting sensitive user information in jeopardy and highlighting IA's negligence in data security.
Individuals seeking help from IA, whether for general inquiries or site removals, can rest assured that their correspondence and personal data is currently at risk.
The lack of urgency in addressing these vulnerabilities reflects poorly on IA’s commitment to data protection, with user data now improperly accessible.
Collection
[
|
...
]