FormGet Security Lapse Exposed Thousands Of Sensitive User-Uploaded Docs

Online form maker, FormGet, which allows its 43,000 customers to create online forms so others can submit their resumes or apply for a job, or provide proof of address or employment, buy goods online, etc, left one of its cloud storage servers online and exposed without a password. The storage bucket, which FormGet pulled offline last night, was packed with hundreds of thousands of files and documents.

Experts Comments

July 29, 2019
Ilia Kolochenko
Founder and CEO
ImmuniWeb
“The problem of misconfigured cloud storage is often exacerbated by trusted third-parties. Most modern businesses have a legitimate need to share their data with diverse vendors, for example, to grow sales and increase profits via external analytics and forecasting capabilities. Vendors may often prioritize performance over data protection to survive on a highly competitive global market. Despite that most companies do have a vendor risk management policy, few are properly enforced and even.....Read More
“The problem of misconfigured cloud storage is often exacerbated by trusted third-parties. Most modern businesses have a legitimate need to share their data with diverse vendors, for example, to grow sales and increase profits via external analytics and forecasting capabilities. Vendors may often prioritize performance over data protection to survive on a highly competitive global market. Despite that most companies do have a vendor risk management policy, few are properly enforced and even less are being continuously monitored for non-compliances. Consequently, your data may suddenly land at the most unexpected place, exposing your company to severe regulatory penalties and a great wealth of other legal ramifications.”  Read Less
July 29, 2019
Ilia Kolochenko
Founder and CEO
ImmuniWeb
“The problem of misconfigured cloud storage is often exacerbated by trusted third-parties. Most modern businesses have a legitimate need to share their data with diverse vendors, for example, to grow sales and increase profits via external analytics and forecasting capabilities. Vendors may often prioritize performance over data protection to survive on a highly competitive global market. Despite that most companies do have a vendor risk management policy, few are properly enforced and even.....Read More
“The problem of misconfigured cloud storage is often exacerbated by trusted third-parties. Most modern businesses have a legitimate need to share their data with diverse vendors, for example, to grow sales and increase profits via external analytics and forecasting capabilities. Vendors may often prioritize performance over data protection to survive on a highly competitive global market. Despite that most companies do have a vendor risk management policy, few are properly enforced and even less are being continuously monitored for non-compliances. Consequently, your data may suddenly land at the most unexpected place, exposing your company to severe regulatory penalties and a great wealth of other legal ramifications.”  Read Less

Submit Your Expert Comments

What do you think of the topic? Do you agree with expert(s) or share your expert opinion below.
Be part of our growing Information Security Expert Community (1000+), please register here.

Write Your Expert Comments *
Your Registered Email *
Notification Email (If different from your registered email)
* By using this form you agree with the storage and handling of your data by this web site.