Cybernews

Attackers could cash out your gift card after popular platform left them passwordless

Cartlow leaked 2FA codes, gift card links, and personal data via an open Kafka broker, exposing millions of users to potential account takeovers and fraud.