DigiNews

Summary

A Hacker News post reports that Fiverr uses Cloudinary and exposed customer work files via public URLs, leading to indexed sensitive documents in Google search results and potential PII exposure. The post links this to improper handling of file delivery and references GLBA/FTC Safeguards Rule violations, noting a vulnerability report to Fiverr with no response. The situation highlights risks of open access in freelancer platforms and the need for proper access controls and disclosure practices.