US Social Security Number disclosure

By
Manieendar Mohan
Published on
02 Jul 2018
Vulnerability

In the US, a Social Security number is a number issued to U.S. citizens, permanent residents and temporary (working) residents. This number is issued by Social Security Administration. This agency is an independent agency of the United States government. There are servers that disclose the Social Security Numbers of the users. This information includes your bank or credit information. If an attacker gets hold of your Social Security Number, he can use this number to get other personal information like address, credit card numbers etc.

Acco rding to US law, disclosure of a person;’s Social Security Number is an offence. The compensation can vary from $100 to $500,000.

Impact

The impact include:-

  • Using the social security number, an attacker can access sensitive information. That is, there will be a loss of personal data.
  • Compromised social security number will compromise the security of the users.

Mitigation / Precaution

Beagle recommends:-

  • Not exposing Social Security Numbers on the website.
Automated human-like penetration testing for your web apps & APIs
Teams using Beagle Security are set up in minutes, embrace release-based CI/CD security testing and save up to 65% with timely remediation of vulnerabilities. Sign up for a free account to see what it can do for you.

Written by
Manieendar Mohan
Manieendar Mohan
Cyber Security Lead Engineer
Find website security issues in a flash
Improve your website's security posture with proactive vulnerability detection.
Free website security assessment