ID Verification Firm AU10TIX Exposes Sensitive User Data

Credentials for the service used by TikTok, Uber, and X were accessible online for over a year, risking personal information security.

AU10TIX's administrative credentials were exposed online, allowing potential access to user data.
The breach involved sensitive information such as names, birth dates, ID numbers, and images of driver's licenses.
The credentials were harvested by malware and shared on Telegram in 2023.
AU10TIX claims no evidence of data exploitation but has begun decommissioning the compromised system.
Major clients affected include TikTok, Uber, X, PayPal, and LinkedIn.