We work likes to pitch itself as a rising tech giant, but the company apparently isn't so tech savvy to put protections on the Wi Fi it offers at the offices that rents out to people Just looking for a place to work, and that's exposing astronomical amounts of data.
Alfred, what's going on here?>> So we were it's Wi Fi.
everyone is on the same Wi Fi network with the same password that goes on at every building.
So if I know the password from one we work I know the password Like the majority of Weworks in New York City.
So A, not safe.
Really bad, and also they don't do basic security things on their WiFi network, like client isolation.
So if you got the WiFi at hotel room, right?
I can't see whatever one else is doing on that same Wi-Fi if they have client isolation which just says I can only see what's on my own traffic.
I can't peep under other people's traffic.
It's a very basic security measure.
Most hotels are doing this.
Most places with shared Wi-Fi are **** this.
We Work does not.
A company that is valued at $46 billion with more than half a million members Working out of their everyday of all these startups that have these sensitive documents on their network does not provide basic security measures like that they do provide something called a private villain which is similar to it but it's a little bit more secure if you want to pay an extra $95 a month and $250 per setup Even though people already pay like more than $1,000 for rent there, they are not providing wireless security measures.
So we've seen a lot of really sensitive documents from the startups.
I had seen, like bank account passwords, login information like insurance policies, job applications.
One of the things in your story that really stuck out to me is that it's not only people.
Who work at we work and are using their Wi Fi?
It's also people that are exposed if they simply unknowingly send something to somebody that's working at a we work on the Wi Fi Is that right?
Yeah, we had seen companies that had never worked out of what we work but their files were exposed on we work network because they were working with startups that had been at we work room recalling some of these companies and saying, hey, do you work at a we work because your documents are on there.
Like network and they said no we've never like we're based out of Connecticut.
We've never been in a we work and it turns out hey like they worked if somebody that did so even if you never set foot in a we work like if you're working with somebody that does and doesn't, put on these like security measures Your documents are probably exposed on we worked network.
So the things that you found you only got just a tiny snapshot.
Yeah.>>Of possible things that could be exposed.
In that snapshot you saw things that are on like the really ridiculous well, ridiculous in two different ways ridiculous for being silly And also, ridiculous for being like, I can't believe that that's just out there for people to grab if they know how.
Yeah, one of the photos that I had seen that was a birthday card-
With a Photoshop of Nicolas Cage's face on a cat, pretty harmless to be exposed on a network, but there were other documents there.
Like i had mentioned bank account passwords job applications lawsuits were on it because there was a there's like law firms
Based out of that we work like a startup like law firm like there's just there and i saw a lawsuit related to it i'm like that should not be just openly on the network like that