Triplebyte leaking PII
To top off hidden public profile ramps last week, this week Triplebyte leaked PII by sending emails with all recipients in the "to" field, exposing a number of users and continuing it's cavalier attitude towards privacy.
https://i.imgur.com/RrHZWZ8.png Can someone address the levels of failures that are required for this to happen, and the measures organizations take for this not to happen? The idea of having such leaks is terrifying. How do your organizations, the ones you've worked with before, or others manage and prevent that, especially if you're in an organization that has this covered? That image makes me think it was a one off mistake. Aside from the public profile launch, what are other examples of their cavalier attitude towards privacy? I don't understand how we can continually leak PII in the era of GDPR