this post was submitted on 13 Jul 2024
273 points (97.9% liked)

Technology

59374 readers
6264 users here now

This is a most excellent place for technology news and articles.


Our Rules


  1. Follow the lemmy.world rules.
  2. Only tech related content.
  3. Be excellent to each another!
  4. Mod approved content bots can post up to 10 articles per day.
  5. Threads asking for personal tech support may be deleted.
  6. Politics threads may be removed.
  7. No memes allowed as posts, OK to post as comments.
  8. Only approved bots from the list below, to ask if your bot can be added please contact us.
  9. Check for duplicates before posting, duplicates may be removed

Approved Bots


founded 1 year ago
MODERATORS
 

According to the YouTube channel Gamers Nexus, over 600,000 customer warranty claims for MSI products were publicly accessible via Google search. MSI, a leading computer hardware and peripherals manufacturer, had exposed data that included sensitive information such as names, addresses, phone numbers, and specific order details.

top 20 comments
sorted by: hot top controversial new old
[–] [email protected] 47 points 4 months ago* (last edited 4 months ago)

Gobbless Gamers Nexus

salutes the GN flag

[–] [email protected] 38 points 4 months ago (2 children)

Do not forget that accessing stuff on Google can probably get you to prison.

When you see something illegal on Google that should have never been published publicly you need to immediately avert your eyes and plug your ears. 🙉

Don't be the next Aaron Swartz...

[–] [email protected] 27 points 4 months ago* (last edited 4 months ago) (3 children)

Aaron Swartz story is a bit different, because he actually paid for those documents via taxpayer money.

But other parts of your comment is true. A good analogy: if someone leaves their house open, and you walk in, that is still ~~burglary~~ trespassing.

[–] [email protected] 13 points 4 months ago (1 children)

I think you mean it's still trespassing, burglary requires intent to commit a crime while entering a building illegally.

[–] [email protected] 5 points 4 months ago (2 children)

Yes, in my native language the two words are the same

[–] [email protected] 4 points 4 months ago

Ah, forgive me, makes sense.

[–] [email protected] 2 points 4 months ago

Just out of curiosity, which language is that?

[–] [email protected] 9 points 4 months ago* (last edited 4 months ago) (1 children)

In your analogy that isn’t trespassing. You’d have to knowingly violate a no trespassing sign or a persons command to leave for it to be trespassing.

[–] [email protected] 3 points 4 months ago

That's only true for areas of land that aren't visibly occupied. Entering any building without permission is considered first degree trespassing in my state, and I don't think that's a unique definition. Traversing the land near a dwelling is considered second degree trespass.

[–] [email protected] 7 points 4 months ago* (last edited 4 months ago)

Bad analogy imho. This would be like going in a mall, entering a store, and being told that it's actually a house and you're trespassing

[–] [email protected] 8 points 4 months ago* (last edited 4 months ago) (1 children)

I don’t believe that, it’s not classified information. Maybe if you then distributed the personal information, but they redacted whatever is shown. If it was classified information, then it’d be illegal.

That’s like saying if you read a piece of paper you found outside and it’s got personal information, you just broke the law. I’m not a lawyer but I don’t think clicking a link from Google and reading unclassified documents is illegal in any way.

[–] [email protected] 7 points 4 months ago

Or if the government sends you the social security numbers of every teacher in the state. Then you're a hacker for responsibly disclosing the issue:
Missouri gov. calls journalist who found security flaw a “hacker,” threatens to sue

[–] [email protected] 15 points 4 months ago

Et tu, MSI?

[–] [email protected] 14 points 4 months ago

Jokes on them, I never register products with the manufacturer.

[–] [email protected] 8 points 4 months ago

First zotac and then MSI.

[–] [email protected] 8 points 4 months ago

Just make everything public and transparent because nobody seems to know how to actually protect data.

[–] [email protected] 5 points 4 months ago* (last edited 4 months ago)

Directly message their legal team instead to claim warranties.

[–] [email protected] 4 points 4 months ago

Maybe employees are not so easily replacable after all.

No way to tell how these things happen that's for sure tho

[–] [email protected] 2 points 4 months ago

Somehow that's not surprising, but it's still a yikes.

[–] [email protected] 1 points 3 months ago