A hotel check-in system left a million passports and driver’s licenses open for anyone to see

A hotel check-in system called Tabiq, maintained by Japan-based startup Reqrea, exposed over one million customer passports, driver's licenses, and selfie photos after the company misconfigured its Amazon cloud storage to be publicly accessible. Security researcher Anurag Sen discovered anyone could view the sensitive documents without a password by knowing only the bucket name "tabiq," and after TechCrunch contacted the company, the storage was secured. The incident highlights a common pattern where major data breaches result from basic cybersecurity errors and misconfigurations rather than sophisticated attacks.