Sign up for our daily briefing

Make your busy days simpler with Axios AM/PM. Catch up on what's new and why it matters in just 5 minutes.

Please enter a valid email.

Please enter a valid email.

Subscription failed
Thank you for subscribing!

Catch up on coronavirus stories and special reports, curated by Mike Allen everyday

Catch up on coronavirus stories and special reports, curated by Mike Allen everyday

Please enter a valid email.

Please enter a valid email.

Subscription failed
Thank you for subscribing!

Denver news in your inbox

Catch up on the most important stories affecting your hometown with Axios Denver

Please enter a valid email.

Please enter a valid email.

Subscription failed
Thank you for subscribing!

Des Moines news in your inbox

Catch up on the most important stories affecting your hometown with Axios Des Moines

Please enter a valid email.

Please enter a valid email.

Subscription failed
Thank you for subscribing!

Minneapolis-St. Paul news in your inbox

Catch up on the most important stories affecting your hometown with Axios Twin Cities

Please enter a valid email.

Please enter a valid email.

Subscription failed
Thank you for subscribing!

Tampa Bay news in your inbox

Catch up on the most important stories affecting your hometown with Axios Tampa Bay

Please enter a valid email.

Please enter a valid email.

Subscription failed
Thank you for subscribing!

Charlotte news in your inbox

Catch up on the most important stories affecting your hometown with Axios Charlotte

Please enter a valid email.

Please enter a valid email.

Subscription failed
Thank you for subscribing!

Please enter a valid email.

Please enter a valid email.

Subscription failed
Thank you for subscribing!

Report: Leaky Post Office interface exposed 60 million users' data

Photo: Dünzl/ullstein bild via Getty Image

A glitch in the Post Office's internet tools left users' information accessible to programmers working on apps, independent security journalist Brian Krebs reports.

The big picture: At issue is a tool to integrate apps with the Post Office's network known as an application program interface (API). Per the report, any logged in user could apparently access and in some cases change other users' information.

Details: The API integrates apps with the Post Office's "Informed Visibility" portal, which helps bulk mail senders track and analyze mail.

  • The leak exposed users' "email address, username, user ID, account number, street address, phone number, authorized users, mailing campaign data and other information," wrote Krebs.
  • The exposure was reportedly first discovered last year, but the researcher who found it had trouble contacting the Postal Service. Krebs contacted USPS on his behalf, and the glitch has been patched.

Who should be worried: We don't know that anyone maliciously took advantage of this glitch, and therefore we don't know if anyone is in any danger. Passwords do not appear to have been exposed by the breach.

Go deeper

Axios
Updated 3 hours ago - Politics & Policy

Coronavirus dashboard

Illustration: Eniola Odetunde/Axios

  1. Health: Most vulnerable Americans aren't getting enough vaccine information — Fauci says Trump administration's lack of facts on COVID "very likely" cost lives.
  2. Education: Schools face an uphill battle to reopen during the pandemic.
  3. Vaccine: Florida requiring proof of residency to get vaccine — CDC extends interval between vaccine doses for exceptional cases.
  4. World: Hong Kong puts tens of thousands on lockdown as cases surge — Pfizer to supply 40 million vaccine doses to lower-income countries — Brazil begins distributing AstraZeneca vaccine.
  5. Sports: 2021 Tokyo Olympics hang in the balance.
  6. 🎧 Podcast: Carbon Health's CEO on unsticking the vaccine bottleneck.
Go deeper (1 min. read)Arrow
Laurin-Whitney Gottbrath
5 hours ago - Politics & Policy

DOJ: Capitol rioter threatened to "assassinate" Alexandria Ocasio-Cortez

Supporters of former President Trump storm the U.S. Captiol on Jan. 6. Photo: Kent Nishimura / Los Angeles Times via Getty Images

A Texas man who has been charged with storming the U.S. Capitol in the deadly Jan. 6 siege posted death threats against Rep. Alexandria Ocasio-Cortez (D-N.Y.), the Department of Justice said.

The big picture: Garret Miller faces five charges in connection to the riot by supporters of former President Trump, including violent entry and disorderly conduct on Capitol grounds and making threats. According to court documents, Miller posted violent threats online the day of the siege, including tweeting “Assassinate AOC.”

Go deeper (1 min. read)Arrow
Axios
6 hours ago - Politics & Policy

Schumer calls for IG probe into alleged plan by Trump, DOJ lawyer to oust acting AG

Jeffrey Clark speaks next to Deputy US Attorney General Jeffrey Rosen at a news conference in October. Photo: Yuri Gripas/AFP via Getty Images.

Senate Majority Leader Chuck Schumer (D-N.Y.) on Saturday called for the Justice Department inspector general to investigate an alleged plan by former President Trump and a DOJ lawyer to remove the acting attorney general and replace him with someone more willing to investigate unfounded claims of election fraud.

Driving the news: The New York Times first reported Friday that the lawyer, Jeffrey Clark, allegedly devised "ways to cast doubt on the election results and to bolster Mr. Trump’s continuing legal battles and the pressure on Georgia politicians. Because Mr. [Jeffrey] Rosen had refused the president’s entreaties to carry out those plans, Mr. Trump was about to decide whether to fire Mr. Rosen and replace him with Mr. Clark."

Go deeper (1 min. read)Arrow

You’ve caught up. Now what?

Sign up for Mike Allen’s daily Axios AM and PM newsletters to get smarter, faster on the news that matters.

Please enter a valid email.

Please enter a valid email.

Subscription failed
Thank you for subscribing!