23
submitted 11 months ago by MrPhibb@reddthat.com to c/unions@lemmy.ml
you are viewing a single comment's thread
view the rest of the comments
[-] Rom@hexbear.net 5 points 11 months ago* (last edited 11 months ago)

During a live video stream of the ballot result, a representative of TrueBallot shared their screen, which displayed an internet URL in the address bar of their web browser. A flight attendant watching the stream copied the URL into their own computer and discovered that the link took them to an unsecured database of the vote.

The flight attendant was able to view the name of everyone who had voted and what ballot they had cast, alongside their email address. The database could even be edited, and ballots could be added and deleted.

“The vendor, TrueBallot, admitted to the executive board, board of election and our attorneys that their system was unsecured, leaving it open to vulnerabilities,” explained the union president Lyn Montgomery in a video message to flight attendants.

How do these people still have jobs

this post was submitted on 18 Dec 2023
23 points (100.0% liked)

unions

1659 readers
49 users here now

a community focused on union news, info, discussion, etc

Friends:

founded 2 years ago
MODERATORS