>Nearly 2,500 accessible files were found sitting on a U.S. government-authorized endpoint, researchers pointed out on X. The files showed Persona conducted facial recognition checks against watchlists and screened users against lists of politically exposed persons.

>Persona performs 269 distinct verification checks, including screening for “adverse media”

im sure everyone assumed this, but its good to know it.

>And the information was openly available. “We didn’t even have to write or perform a single exploit, the entire architecture was just on the doorstep,”

it is kind of scary how often these types of situations are only found out because of wild incompetence. you have to imagine that most similar situations dont suffer from the same incompetence (and thus arent known)

>“At Discord, protecting the privacy and security of our users is a top priority.

please, i wish companies would just stop saying this obvious lie. you know that you dont care. we know that you dont care.

>It’s dystopian that we want people to facedox themselves to everyone to be real online.

.... says the ceo of the company that you have to send your face ("facedox", if you will) to