Online learning platform Coursera fixes vulnerabilities, says no user data was compromised
Online learning platform Coursera said it has patched a vulnerability that left the names and email address of its nine million registered users potentially accessible to teachers registered with the service. The issue was raised by Stanford professor Jonathan Mayer. A registered teacher on Coursera himself, Mayer found that the site’s use of autocomplete left its database exposed to a potential data dump using the same technique as Weev’s infamous incident with AT&T. In addition, Mayer’s research suggested that third party websites could be manipulated to gain access to a Coursera’s student’s course registration history. The professor also raised issues with the company’s confusing ID privacy policy. Coursera apologized…
This story continues at The Next Web
The post Online learning platform Coursera fixes vulnerabilities, says no user data was compromised appeared first on The Next Web.