The COVID-19 Vaccination Website for Expats Was Hacked

On June 15, 2021, the Covid-19 vaccination website for foreigners was seemingly hacked, allowing others to see personal information, including passport numbers, of those who had registered for the vaccine. While the faulty site is up and running again, we at The Thaiger are unable to set up an appointment.

The data leak was discussed on social media by ex-pat blogger Richard Barrow. Other people’s names, passport numbers, and locations were displayed under user information. He said that when he clicked on the “edit” button, another name with personal details appeared.

“IMPORTANT WARNING: If you are using the website to register for a vaccine appointment, you should be aware that ALL of your personal details are freely available.”

As the website’s tech team was revising the coding system to allow more people to register for vaccines, a glitch occurred, Department of Disease Control Office of International Cooperation director Soawapak Hinjoy wrote in a statement. Soawapwak says the problem lasted only 10 minutes. Richard says it was longer than expected.

There was a problem that lasted for 10 minutes. The person clicking on the non-general portal of the page was able to see the names of other last registrants. A second reason is that the individual opened the page until the session ended. The website control system was incorrect. People making the enrollment request normally cannot see the list of other people enrolled. However, the team has already solved the problem.

There is a link on the website to report technical issues. It says “Some bugs on the website may not be safe for others, so please report them immediately and don’t share them publicly.”

Tags: , , , , , , , ,

%d bloggers like this: