We use cookies to provide some features and experiences in QOSHE

More information  .  Close
Aa Aa Aa
- A +

OPINION: Is Your Personal Information Safe In The Hands Of USPS?

1 0 0
29.11.2018

When mailing letters and packages to loved ones this holiday season, consumers have to place an awful lot of trust in their mailers.

This trust isn’t just about the safety of the paper-clipped check or expensive new gadget that passes through the hands of U.S. Postal Service (USPS) employees. Often, consumers give phone-numbers, e-mail addresses, and multiple addresses to the Postal Service with the understanding that their information will be protected.

Unfortunately, this has simply not been happening.

Silicon Republic reported that, according to KrebsonSecurity, “a broken API within USPS’s mail tracker service called Informed Delivery allowed any user to see another user’s details,” exposing the records of roughly 60 million individuals.

Normally, websites require that in order for users to retrieve sensitive information (ie. phone numbers listed on an account), they go through multiple access points (or hurdles) in order to retrieve said information. Due to a lack of multiple access points, malicious individuals were able to gain and change personal user information through merely logging onto the victim’s online portal.

This finding is bad enough in and of itself, but it was further revealed that USPS knew this information for a year and chose to ignore it.

The USPS’ lackluster cybersecurity effort,........

© The Daily Caller