"Canadian Flair Airlines Left User Data Leaking for Months"

The Cybernews research team discovered that Canadian Flair Airlines left credentials to sensitive databases and email addresses exposed for at least seven months, increasing the risk of passengers' information, such as emails, names, and addresses, being accessed by malicious actors. The leak involved publicly accessible environment files hosted on flyflair[.]com, which belongs to the Canadian ultra-low-cost carrier Flair Airlines. In software development, environment files are commonly used to manage environment-specific settings or sensitive information, such as Application Programming Interface (API) keys and database credentials. This article continues to discuss the exposure of user data by Canadian Flair Airlines.

Cybernews reports "Canadian Flair Airlines Left User Data Leaking for Months"

Submitted by grigby1