TechCrunch·

🚨UK Visa Portal Exposes Thousands of Passports and Selfies

Your passport data might be exposed online

TL;DR

TechCrunch reports UK Visa Portal publicly exposed thousands of user passports and selfies. The breach was fixed overnight but highlights the risks of third-party services for sensitive government documents.

TechCrunch uncovered a massive data leak at UK Visa Portal where thousands of users' passport details and selfie photos were publicly accessible online. This happened due to an Amazon S3 bucket misconfiguration, allowing anyone to view user-uploaded files containing precise location data. The breach highlights the dangers of using unverified third-party services for handling sensitive government-issued documents. If you've used UK Visa Portal or similar services, check your data and consider switching to official channels like GOV.UK.

UK Visa Portal Exposes Thousands of Passports and Selfies — TechCrunch

Key Points

1

TechCrunch discovered an Amazon-hosted storage server exposing thousands of passport details and selfies from UK Visa Portal users.

2

The security lapse allowed anyone to access user-uploaded files containing precise location data, revealing home addresses in some cases.

3

UK Visa Portal does not provide a way for users to report security issues or contact management directly via their website.

4

TechCrunch verified the authenticity of the exposed data by contacting affected individuals and confirming accurate information.

5

The company allegedly runs Active Leadgen LLC based in the UAE, raising concerns about accountability and transparency.

Why It Matters

If you've used UK Visa Portal or similar services for passport uploads, your sensitive government-issued documents may be exposed. The breach highlights the risks of third-party platforms and underscores the importance of using official channels like GOV.UK to handle such data.

uk-visapassport-datas3-bucket-leaktechcrunch-report

Frequently Asked Questions

Why does this matter?

If you've used UK Visa Portal or similar services for passport uploads, your sensitive government-issued documents may be exposed. The breach highlights the risks of third-party platforms and underscores the importance of using official channels like GOV.UK to handle such data.

What happened?

TechCrunch reports UK Visa Portal publicly exposed thousands of user passports and selfies. The breach was fixed overnight but highlights the risks of third-party services for sensitive government documents.

Comments

Subscribe to join the conversation...

Be the first to comment

Enjoyed this article?

Get it daily. 7am. Free. Reads in 5 minutes.