DBHunter
Infinity Member
Golden Member
- Joined
- August 23, 2025
- Messages
- 2,188
- Reaction score
- 4,420
- Points
- 113
- Thread Author
- #1
Hello DNA,
We have discovered a data leak affecting the operational services of FGC (Ferrocarrils de la Generalitat de Catalunya) and AMB (Àrea Metropolitana de Barcelona).
Data leak includes:
Download:
We have discovered a data leak affecting the operational services of FGC (Ferrocarrils de la Generalitat de Catalunya) and AMB (Àrea Metropolitana de Barcelona).
Data leak includes:
- API authentication-related fields, including application keys and secrets (sinch_app_key, sinch_app_secret).
- Bus and fleet identifiers (busID, vehicleIds, vehicleCodes).
- Route, trip, and service identifiers (route_id, trip_id, agency_id).
- Real-time vehicle location (GPS latitude and longitude).
- Current station and destination information.
- Complete stop list, including geographic coordinates and timestamps.
- Estimated departure and arrival times.
- Passenger occupancy and vehicle capacity metrics.
- Operational status indicators (active state, delays, and current position).
- Driver, shift, and scheduling identifiers.
- Internal station identifiers and stop sequencing data.
- Fleet scheduling and route planning information.
- Backend service endpoint information (baseURL).
- Application configuration values and internal operational metadata.
Download: