I have seen this
A long time ago (1997) this happened several times in different organisations. Caching web gateways set wrongly and cahing the page without any reference to teh query string or form variables.
Really nasty but easy to fix.
YouTube has a little local difficulty in Arabia
A security snafu on YouTube allowed users in the UAE to view the account pages and preferences of other users. The bug also created a means to jump into Gmail in cases where surfers had linked their YouTube and Gmail accounts. The issue appeared to only crop up locally, within the UAE, and only for users of the Etisalat …
This topic is closed for new posts.
youtube.. why?
Why is youtube mentioned in the title? It's not youtube's fault.
Here's what happened.
Google made a secret pact with the UAE Authorities to give them access to the profiles of the people in their country (either that or have the domain banned in Arab land), unfortunately the SQL was wrong.
This topic is closed for new posts.
Sign up, sign up for The Register's weekly IT security newsletter - click here
Popular Whitepapers
- The BI Inflexion Point
Information is a right, not a privilege - Risk and Resilience
The application availability gamble - Register Research on: Agile development - is it right for you
Reaping the benefits of modern software practice - The Register Guide to managing spam
A primer on the implications for enterprise IT - The Register Guide to email security
A primer on the challenges of securing email and approaches to resolving them - High Performance for All
Responding to the needs of compute-intensive workloads
