Intel data breach: employee data could be accessed via API

Various vulnerabilities in Intel’s internal sites allowed unauthorized users to access the personal data of approximately 270,000 employees, more than the company currently employs. Easy-to-circumvent logins and hard-coded login credentials were the weakest links.

Security researcher Eaton Zveare discovered the leaks. The login page for Intel India did not even require actual credentials to download data via the API. Zveare then found three other internal Intel sites where employee information could be obtained. Information about suppliers was also found, which explains why a higher number of employees than Intel’s workforce was exposed to the leak.

From report to solution

The incident spanned a period of more than ten months. The timeline of the responsible disclosure process ran from October 14 last year to yesterday (August 18), when Zveare detailed his findings in a blog post. All findings were reported to Intel through the appropriate channels, and the company has since resolved the vulnerabilities.

Remarkably, no reward was offered for the discoveries. Intel’s bug bounty program excludes internal websites from rewards, despite the seriousness of the findings.

Four gateways to employee data

The leak involved access to various Intel portal sites, including systems for human resources and external partners. Intel India’s business card website was particularly vulnerable due to an easily circumvented company login.

In addition to this internal business card site, Zveare identified three other entry points. The internal portals for “product hierarchy” and “product onboarding” also leaked employee data. SEIMS, an external platform for information exchange between Intel and suppliers about intellectual property, was the fourth route.

The security issues ranged from bypassing Microsoft Azure logins to hardcoded login credentials that were relatively easy to decrypt, the researcher said.

In the end, Zveare received only one email from Intel. The company has since expanded its bug bounty program, but this security researcher cannot benefit from these discoveries.

The many victims of Salesforce attacker ShinyHunters

Google, Cisco, Air France-KLM, Chanel...

Erik van Klinken August 7, 2025

Top story

NIS2 is intended to make organizations more secure, but will it succeed?

NIS2 hasn't been converted into national law in every EU country, despite the deadline set for October 2024. ...

Erik van Klinken 1 day ago

Founder Nir Zuk leaves Palo Alto

Palo Alto Networks has announced that founder and Chief Technology Officer (CTO) Nir Zuk is leaving the compa...

Mels Dees 8 hours ago

Expert Talks

Tech calendar

Intel data breach: employee data could be accessed via API

From report to solution

Four gateways to employee data

Stay tuned, subscribe!

Intel’s CEO survives baptism of fire, will his company do the same?

Is Chrome being acquired by Perplexity for 30 billion?

Cohere now worth $6.8B: what makes the AI startup stand out?

Amid digital sovereignty concerns, SUSE’s CEO sees opportunities ahead

Evolution of private 5G and Wi-Fi: is convergence on the horizon?

Slack is evolving into a work operating system

The unique IT challenges of Carnival Cruise Line's "floating cities"

What does HPE Financial Services do?

Meeting future workload demands: the case for emerging memory technologies

How AI and automation are redefining ROI in the enterprise

Enhancing video encoding: The AV1 support in the new ARTPEC-9 System-on-Chip

NULLCON Berlin 2025

bit summit

GITEX DIGI_HEALTH 5.0 - Thailand

VeeamON Tour 2025

IT Arena

Innovation Week 2025

Experience Synology’s latest enterprise backup solution

How to choose the right Enterprise Linux platform?

Enhance your data protection strategy for 2025

Strengthen your cybersecurity with DNS best practices