WeWork Developers Exposed Contracts and Customer Data on GitHub

WeWork developers exposed customer contracts, some of which contained bank account details, and the personal and contact information of other potential customers to the open internet. The issue impacts a subset of WeWork customers based in India, China, and Europe. The news comes after WeWork has essentially imploded, with its valuation tumbling and investor SoftBank…

WeWork Developers Exposed Contracts and Customer Data on GitHub

WeWork developers exposed customer contracts, some of which contained bank account details, and the personal and contact information of other potential customers to the open internet. The issue impacts a subset of WeWork customers based in India, China, and Europe. The news comes after WeWork has essentially imploded, with its valuation tumbling and investor SoftBank having to embarrassingly bail the company out with a cash injection of $9.5 billion. Mass layoffs are happening this week. For some of the impacted customers “it’s an incredibly sensitive OpSec [operational security] issue to have the remote address of some of their employees get leaked, especially when that location is a shared workplace,” said Mossab Hussein, a security researcher from Dubai-based cybersecurity firm spiderSilk, who flagged the multiple issues to Motherboard. One issue involved a GitHub profile of a WeWork developer. One of their repositories contain
Read More From Publisher