Au10tix leaks Administrative Credentials
Take action: If you have been using Fiverr or Upwork, your documents and identity may have been scraped by criminals.
Learn More
Au10tix, a company specializing in identity verification has been leaking credentials. Au10tix's services offer verifying identity documents using selfie biometrics, conducting real-time biometric liveness detection via video streams and performing age verification through facial analysis.
For over a year, Au10tix inadvertently exposed a set of administrative credentials online, as reported by 404 Media. The set of credentials provided access to a logging platform, which in turn contained links to data related to specific people who had uploaded their identity documents.
The exposure included sensitive personal information such as:
- Names,
- dates of birth,
- nationality,
- identification number
- Driver’s licenses
- ID numbers
Au10tix’s extensive client base includes major companies such as:
- TikTok
- Uber
- Fiverr
- PayPal
- Coinbase
- Upwork
The number of exposed individuals is not disclosed.
Some of these companies have confirmed their current or past use of Au10tix’s services, while Coinbase denied any knowledge of a breach of its customers’ data associated with the Au10tix compliance platform.
The exposure of administrative credentials for such an extended period raises serious questions about the security measures and protocols in place at Au10tix, especially considering the sensitive nature of the data they handle.
Currently, there is no details on how the credentia on the exact steps Au10tix has taken to rectify the credential exposure and secure their systems.
