A third-party UK visa application portal has been leaking the passport scans, selfies, and location data of thousands of applicants — and as of publication, [the leak remains unpatched](https://techcr
A third-party website used in the UK visa application process has been leaking applicants' passport scans and facial selfies to unauthenticated users — and as of this writing, [the leak remains unpatc
The same trust model that makes open-source package ecosystems productive has made them a reliable attack surface — and recently that surface expanded to include the AI/ML toolchain itself.