Zero‑auth vulnerability discovered in DoD‑backed contractor’s multi‑tenant system
Security firm Strix identified a multi‑tenant authorization flaw that allowed unrestricted access across a Department of Defense–backed startup’s platform. The vulnerability, detailed in a blog post referenced on Hacker News, could have exposed sensitive defense data. No official statement from the contractor was included in the report.
Advertisement: Article Inline