顶会双盲评审大翻车！一个Bug审稿人信息全泄露，ICLR、NeurIPS、ACL都遭殃…

Core Points - A significant bug in the OpenReview system has exposed the identities of reviewers for major computer science conferences, undermining the double-blind review process [2][4][19] - The bug was reported on November 27, 2015, and was fixed within an hour, but the damage had already been done as reviewer information was harvested [6][10][12] - The incident has sparked discussions about the integrity of the peer review process and the potential need to reassess the double-blind review system [21][25] Group 1 - The bug allowed anyone to retrieve personal information of reviewers by inputting specific fields into an API link, affecting all conferences hosted on OpenReview [4][5][8] - ICLR 2026 issued a statement condemning the misuse of leaked information and warned of severe consequences for any attempts to exploit the data [6][8][13] - The incident has led to a surge of posts from authors identifying their reviewers, raising concerns about the repercussions for the peer review community [14][19][22] Group 2 - The OpenReview team is currently analyzing API call logs to determine the extent of the data breach and identify accounts that accessed sensitive information [12] - The event has prompted calls for accountability among reviewers, with some suggesting that irresponsible reviewers should lose their anonymity [24][25] - The academic community is urged to reflect on the vulnerabilities of the current review system and the potential for reform [20][21]