Regarding Security: Instances of unauthorized access to some closed loops
Hello everyone.
In the last days we have been investigating a potential security issue where a user were able to see content from a closed loop without being a member of it.
We have been able to reproduce one situation where this was possible when certain conditions were met. This issue is now fixed.
As far as we could find out this has been exploited in very few limited instances, but we apologize for the irritation caused. We will continue to review access permissions to ensure this will not come up again in the future.
While we appreciate that this has been brought to our attention, I want to point out that posting screenshot from closed loops into other loops is considered a violation of Scooploop's policy and will lead to temporary or indefinite suspension of an account.
The correct way to report security related issues is to contact Scooploop support via direct message or via the support email account ( support@scooploop.com )
In the last days we have been investigating a potential security issue where a user were able to see content from a closed loop without being a member of it.
We have been able to reproduce one situation where this was possible when certain conditions were met. This issue is now fixed.
As far as we could find out this has been exploited in very few limited instances, but we apologize for the irritation caused. We will continue to review access permissions to ensure this will not come up again in the future.
While we appreciate that this has been brought to our attention, I want to point out that posting screenshot from closed loops into other loops is considered a violation of Scooploop's policy and will lead to temporary or indefinite suspension of an account.
The correct way to report security related issues is to contact Scooploop support via direct message or via the support email account ( support@scooploop.com )
