Fiverr Exposes User Data to Google Indexing, Researchers Report
Severity: High (Score: 61.5)
Sources: Hackread, Cybersecuritynews
Summary
Fiverr, a freelance service platform, has reportedly leaked sensitive user information due to a misconfigured file-hosting setup. Researchers found that personal identifiable information (PII), including tax forms and IDs, was publicly accessible and indexed by Google. This exposure affects numerous Fiverr users who may have shared sensitive documents with freelancers. The incident was disclosed on Hacker News, highlighting the potential for misuse of the leaked data. Fiverr has yet to provide a comprehensive response to the situation. The scope of the impact remains unclear, but the presence of sensitive data in search results raises significant privacy concerns. Users are advised to monitor their accounts for any unusual activity. The company is currently investigating the issue to implement necessary security measures. Key Points: • Fiverr's misconfigured file-hosting exposed sensitive user data to Google indexing. • Personal identifiable information, including tax records, is accessible publicly. • The company is investigating the incident but has not yet issued a full response.