Talk about a snappy attack - popular photo booth maker allegedly leaves user images at risk

• A flaw in Hama Film’s website exposed photo‑booth images from the US, UAE, and Australia to anyone who knew where to look
• Researchers saw 1,000+ images from Melbourne booths, and says photos were accessible for up to 24 hours
• Even short‑term exposure enables identity abuse: fake profiles, scams, bypassing selfie checks, and building synthetic identities

A popular photo booth chain found across the US, UAE, and Australia was found to store all its image data on a server which can (easily) be accessed through the website of the device manufacturer, essentially exposing people’s identities to potentially malicious players, experts have warned.

Cybersecurity researcher alias Zeacer told TechCrunch that one point, they were able to view more than 1,000 pictures for Melbourne-based booths.

Zeacer reached out to Hama Film to notify it of the vulnerability in its website, but received no response ...