Color susceptible to geolocation spoofing

From ZDNet:

“Literally hours after it was released security researcher and Veracode CTO Chris Wysopal wrote that Color’s authentication was ‘broken’ and vulnerable ‘trivial geolocation spoofing.’

From his couch in New York, Wysopal was able to see Color photos from Harvard, MIT, NYU, and perhaps most shockingly, from Color HQ in Palo Alto where he was able to browse Color CEO Bill Nguyen’s personal photos.”