• breadsmasher@lemmy.world
    link
    fedilink
    English
    arrow-up
    26
    arrow-down
    1
    ·
    1 year ago

    Surely allowing access to this personal data via a public API is a data breach? Its just taking it from something that shouldnt have exposed it rather than hacking into a system

    • towerful@programming.dev
      link
      fedilink
      English
      arrow-up
      7
      ·
      1 year ago

      Yeh.
      Same as if it was a CSV mailing list on an unprotected URL or whatever.
      The term “data breach” suggests there was security there to be breeched. Maybe it needs a better term?

      • unscholarly_source@lemmy.ca
        link
        fedilink
        English
        arrow-up
        4
        ·
        edit-2
        1 year ago

        Data leak? In the security field, they categorize it as “information disclosure”… But it doesn’t have the same level of gravitas to it

        • db2
          link
          fedilink
          English
          arrow-up
          2
          ·
          1 year ago

          We have investigated this unintended information disclosure and have concluded it’s the fault of the users for having information.

          • unscholarly_source@lemmy.ca
            link
            fedilink
            English
            arrow-up
            3
            ·
            1 year ago

            Carries the same weight as “Rapid Unscheduled Disassembly”. It’s the fault of those little green men in kerbal space program.