This is what it looks like.
And no, the owner of the card is not called Eliav and it is not his charge (photo: screenshot)
A serious malfunction that occurred this evening (Tuesday) in the application of the credit company Max, presented customers with billing details and personal details of other customers.
"Every time I entered the application, I received details of another user, everything," says Yifat, a client of the Max company in a conversation with Walla!
technology.
"It's very stressful to find out that you are entering an application that is supposed to be secure (in my case with a fingerprint) and not only is it hacked, but every time I logged in other people's names, amounts, card details, email address and phone number appeared," added Yifat.
"I entered the application and suddenly I saw something else - a charge that was not mine. Then I saw that the name was wrong," says another customer.
Sahar Avitan, the CEO and owner of the Kieran company, explains in a conversation with Walla! Technology that "a mistake in the code is common and even legitimate - if there is an increase before the release of a version for production, in the end within thousands and millions of lines of code it is very easy to miss or not pay attention to the details The small ones, by the way it seems MAX were pressured to release a version or a quick fix and didn't bother to perform tests (QA) properly, a sorry case that reveals sensitive information about all customers.
" Unwanted information for parties who should not be exposed to the information, this information can be misused by parties who can exploit this bug to perform unauthorized actions or be exposed to financial information that is not theirs," adds cyber intelligence researcher Tom Malka.
technology
privacy and security
Tags
Credit Card
