The vulnerability exists when users share files via share links, which are then subsequently inserted into the search box (as opposed to the URL bar) in their browsers this allowed Intralinks to collect the data in the AdWords campaign management interface. The vulnerability was discovered by cloud-based file locker Intralinks in a Google AdWords campaign in which its services are advertised using keywords that identify its competitors, which in this case are Box and Dropbox. This means private data can be read by third parties or indexed by search engines. Dropbox and Box leak files in security through obscurity nightmareīox and Dropbox have fallen victim to an exploit that allows privately shared files to be read, due to poor security practices and poor design choices in browsers.Ī major vulnerability was identified earlier this week in the online platform of Box and Dropbox that allows for the discovery of private file transfer links.
0 kommentar(er)
