In a staggering privacy breach, over 21 million images documenting employee activity from a workplace
surveillance tool have been leaked. The affected app is called WorkComposer, which is used by IT teams to monitor employees in an office.
The leak was discovered by researchers at
Cybernews, who revealed that the images contained sensitive data, including full-screen captures of emails, internal communication, and confidential documents, potentially placing thousands of employees and companies at risk. According to the report, the images were hosted on an unsecured Amazon S3 bucket.
Toms Guide reports that WorkComposer secured the exposed data after being informed of the breach. However, the damage could have been done, as anyone could have viewed sensitive corporate information.
This in turn could have violated both the European Union's General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA), placing affected companies at risk of significant legal repercussions. The leaked information could facilitate
identity theft, unauthorized access to employee accounts, and even broader
data breaches targeting the businesses themselves.
www.ghacks.net
