India’s national logistics portal exposed sensitive personal data, trade records

India’s state-owned logistics portal has fixed misconfigurations and vulnerabilities that exposed sensitive personal data and various state and private trade records. Called the National Logistics Portal-Marine, the website made the sensitive and private data public due to misconfigured Amazon S3 buckets. It also carried a JavaScript file that included login credentials into the web source […] from TechCrunch https://ift.tt/lw3zFVS