Airbnb Exposed Private Inboxes To Unrelated Accounts jstashbazarcom, jstash-bazarcm

Airbnb users faced a peculiar issue recently when they started seeing unrelated inboxes. It turns out that Airbnb inadvertently exposed private inboxes to other users because of a technical glitch.
Lately, Airbnb users noticed some unrelated inboxes in their accounts after they logged-in. Specifically, those messages neither belonged to their accounts, nor the apartments.
The users could view other hosts’ data, including addresses, as well as the codes needed to step in a property. Whereas, with every refresh, they could view entirely new information of another unrelated account.
The glitch precisely affected the host accounts, after which, the users flooded the social media with complaints.
I am seeing other peoples (hosts) messages. This is clearly a concerning security link.
See images… I have no association with these people or their apartment names you see in the screenshot.
Airbnb’s msging system has always been awful, but they really need to sort this out.
I’m logging in as a host and it’s welcoming me with a different name and inboxes. My co-host is setting a completely different inbox. We’re on the phone with Airbnb who at first was just like, “Clear your cookies.” Um, I can see the messages including people’s addresses and the codes to get in their homes. This means someone else may be able to see mine.
Airbnb hosts, are you having similar issues? This seems like a MAJOR security issue to me, but we feel like Airbnb is not very alarmed.
Users even confirmed about other hosts facing the same worldwide.
Same here! Its crazy.
I’ve talked to 5-6 hosts I know, they all have the same issue. Seeing inboxes of random hosts from all over the world!
According to a user, upon contacting Airbnb support to report the matter, they received the advice to “clear cookies”. That too didn’t work. Other users also commented that they couldn’t get any help in this matter as the support agents confirmed things were fine at their end.
While the problem remained unclear initially, Airbnb later told ZDNet that it was a technical glitch. As per their statement,
On Thursday, a technical issue resulted in a small subset of users inadvertently viewing limited amounts of information from other users’ accounts.
The glitch happened on Thursday that affected desktop and mobile web platforms. The Airbnb mobile app, however, remained unaffected.
According to Airbnb, they identified the technical issue within an hour it happened. While the flaw exposed data to others, Airbnb confirmed no serious security threat as the other users could not modify the exposed information.
We fixed the issue quickly and are implementing additional controls to ensure it does not happen again. We don’t believe any personal information was misused and at no point was payment information accessible.
Hence, now, the Airbnb host accounts are safe.
Yet, it remains unclear if this data exposure would trigger any legal issues or not.
jstashbazarcom jstash-bazarcm

This entry was posted in Статьи. Bookmark the permalink.