USPS patches API flaw that let anyone with a usps.com account view details of 60M users, over a year after a researcher says he disclosed the vulnerability (Brian Krebs/Krebs on Security)

Brian Krebs / Krebs on Security:
USPS patches API flaw that let anyone with a usps.com account view details of 60M users, over a year after a researcher says he disclosed the vulnerability  —  U.S. Postal Service just fixed a security weakness that allowed anyone who has an account at usps.com to view account details …



from Techmeme http://www.techmeme.com/181121/p13#a181121p13