On a network? If so your FeedBurner account is not secure.
Jeez, this is a little scary FeedBurner!
Here’s what happened again today, I go to work, log into the network, and check all my stats everywhere (Google Analytics, Adsense, etc). Eventually, I get to my Feedburner stats and they look odd, not like they did here, but like my stats are all weird…much lower…man..what happened last night…everything is off…
Then I noticed I was in someone elses FeedBurner account!?
I’m not even close to a security expert, but I know that’s not supposed to happen. Ever. I did a search on the email the account was registered to and it’s someone that I don’t know, but that works for the same company I do.
And remember I said again at the beginning of this post? I would have let this slide FeedBurner but this has happened at least once if not twice before and I don’t go to the office or check FeedBurner stats that often.
What’s going on guys? This is not good. I would have taken screens for you, but I couldn’t see a quick way to do that in a useful manner as everything would need to be blurred out.
Word to the wise, think about this next time you check any account from a work network!
UPDATE: Via coverage of this issue at ThreadWatch Here’s what seems to be confirmation of this happening to at least one other person. Here’s what they had to say:
…in my account’s profile area, incl. their social security number. What’s funny is that I actually KNEW the guy who’s contact info they had, now the X out all except the last 4 digits of the SSN there; but that was a pretty big security faux pas…
Don't miss another post! Subscribe by RSS feed or by email today!
Share this post! 9 comments, add yours!
So what, they were doing login based on IP? I can’t believe that.
Hi Robin,
I can’t imagine they would do that either, but as I mentioned, I don’t know anything about security.
All I can say is it happened more than once now. No need for me to log in, I’m just in someone elses account.
Wow, that’s crazy. Are you sure no-one was using your terminal while you were away? Perhaps you have clueless network admins who have somehow managed to share cookies between machines?
Not likely. My machine is always locked and we don’t really have a need to use each others machines.
I wouldn’t know on the sharing cookie bit, but I suppose something like that could be happening…I’d be surprised though as you’d be hard pressed to find better admins than my company has.
Robin,
Check the post update, looks like i’m not the only one.
[…] My buddy over at my favorite Google guide seems to have found quite the security problem at FeedBurner. […]
Hello—
Matt Shobe from FeedBurner here. We do take account security very seriously and would like to make sure we fully understand exactly what you encountered. If you could please send us a note at feedback@feedburner.com, to my name’s attention in subject line, we would appreciate having that information in order to learn more about your specific software/computer/network setup and other factors that can help us confirm what occurred.
Hi Matt,
There’s not too much more I can tell you but I will send you what I can.
Thanks for offering to help.
Weird, I’ve used FeedBurner from a corporate network for quite some many year and have never seen this.