bug-bounty518
xss347
exploit237
google218
rce177
facebook167
microsoft138
web3122
writeup114
cve102
malware101
open-source91
csrf84
apple82
account-takeover78
sqli68
ai-agents63
browser63
cloudflare60
dos59
phishing56
ssrf52
privilege-escalation52
tool46
supply-chain45
privacy44
pentest42
reverse-engineering41
auth-bypass40
oauth38
idor38
llm37
aws36
opinion35
cloud35
ctf34
automation33
machine-learning32
race-condition32
code-generation31
infrastructure31
lfi30
clickjacking29
node28
cors28
access-control27
subdomain-takeover26
rust24
performance-optimization24
info-disclosure24
0
2/10
A critical IT glitch in the banking apps of Lloyds, Halifax, and Bank of Scotland allowed customers to view other users' account details, transactions, and personally identifiable information (including names, account numbers, sort codes, and NI numbers) after logging in. The incident was quickly resolved but triggered ICO investigation.
authentication-bypass
information-disclosure
banking
mobile-app
data-exposure
account-enumeration
session-management
financial-services
privacy-breach
pii-exposure
Lloyds Banking Group
Halifax
Bank of Scotland
Information Commissioner's Office (ICO)
MoneySavingExpert
Martin Lewis