A critical authorization vulnerability recently discovered in Schemata, an AI-powered military training platform, left sensitive U.S. military personnel data and restricted training materials openly accessible to any low-privilege account for nearly 150 days before a patch was applied. Schemata, backed by venture capital firm Andreessen Horowitz, holds active contracts with the United States Department of […]
The post Zero-Auth Flaw Exposes DoD Contractor to Cross-Tenant Data Breach appeared first on Cyber Security News.