rss
07-18-2018, 11:56 PM
Researcher discovers Venmo exposes 'an alarming amount' of personal data in public API
https://i.amz.mshcdn.com/n7V0m7UPGyHGNn2GlMei1026ErU=/575x323/filters:quality(90)/https%3A%2F%2Fblueprint-api-production.s3.amazonaws.com%2Fuploads%2Fcard%2Fima ge%2F813129%2F824b6d81-a5cf-4216-9358-7e74d68c9f23.pnghttps://a.amz.mshcdn.com/assets/feed-tw-e71baf64f2ec58d01cd28f4e9ef6b2ce0370b42fbd965068e9 e7b58be198fb13.jpg (https://twitter.com/share?via=Mashable&text=Researcher+discovers+Venmo+exposes+%27an+alar ming+amount%27+of+personal+data+in+public+API&url=https%3A%2F%2Fmashable.com%2F2018%2F07%2F18%2F venmo-public-transactions%2F)https://a.amz.mshcdn.com/assets/feed-fb-8e3bd31e201ea65385a524ef67519d031e6851071807055648 790d6a4ca77139.jpg (https://www.facebook.com/sharer.php?u=https%3A%2F%2Fmashable.com%2F2018%2F0 7%2F18%2Fvenmo-public-transactions%2F&src=sp)
Next time you make a payment on Venmo (https://mashable.com/category/venmo/), beware: almost anyone can track it.
The popular mobile payments app is sharing users' personal data — including real names, comments sent with the payment, transaction dates, and recipients of the transaction — with the public by default. This information is being exposed through company’s public API, and it can be hidden by adjusting your privacy settings from "Public" to "Private."
Security researcher Hang Do Thi Duc (https://22-8miles.com/) recently discovered this "alarming amount" of information being leaked by examining the public API. The reason its happening, the researcher suggests, is because the Venmo app's default settings are set to "Public" for all users. Read more... (https://mashable.com/2018/07/18/venmo-public-transactions/)
More about Privacy (https://mashable.com/category/privacy/?utm_campaign=Mash-Prod-RSS-Feedburner-All-Partial&utm_cid=Mash-Prod-RSS-Feedburner-All-Partial), Paypal (https://mashable.com/category/paypal/?utm_campaign=Mash-Prod-RSS-Feedburner-All-Partial&utm_cid=Mash-Prod-RSS-Feedburner-All-Partial), Venmo (https://mashable.com/category/venmo/?utm_campaign=Mash-Prod-RSS-Feedburner-All-Partial&utm_cid=Mash-Prod-RSS-Feedburner-All-Partial), Mobile Payments (https://mashable.com/category/mobile-payments/?utm_campaign=Mash-Prod-RSS-Feedburner-All-Partial&utm_cid=Mash-Prod-RSS-Feedburner-All-Partial), and Api (https://mashable.com/category/api/?utm_campaign=Mash-Prod-RSS-Feedburner-All-Partial&utm_cid=Mash-Prod-RSS-Feedburner-All-Partial)http://feeds.feedburner.com/~r/Mashable/~4/ox1OuHB4_QU
https://i.amz.mshcdn.com/n7V0m7UPGyHGNn2GlMei1026ErU=/575x323/filters:quality(90)/https%3A%2F%2Fblueprint-api-production.s3.amazonaws.com%2Fuploads%2Fcard%2Fima ge%2F813129%2F824b6d81-a5cf-4216-9358-7e74d68c9f23.pnghttps://a.amz.mshcdn.com/assets/feed-tw-e71baf64f2ec58d01cd28f4e9ef6b2ce0370b42fbd965068e9 e7b58be198fb13.jpg (https://twitter.com/share?via=Mashable&text=Researcher+discovers+Venmo+exposes+%27an+alar ming+amount%27+of+personal+data+in+public+API&url=https%3A%2F%2Fmashable.com%2F2018%2F07%2F18%2F venmo-public-transactions%2F)https://a.amz.mshcdn.com/assets/feed-fb-8e3bd31e201ea65385a524ef67519d031e6851071807055648 790d6a4ca77139.jpg (https://www.facebook.com/sharer.php?u=https%3A%2F%2Fmashable.com%2F2018%2F0 7%2F18%2Fvenmo-public-transactions%2F&src=sp)
Next time you make a payment on Venmo (https://mashable.com/category/venmo/), beware: almost anyone can track it.
The popular mobile payments app is sharing users' personal data — including real names, comments sent with the payment, transaction dates, and recipients of the transaction — with the public by default. This information is being exposed through company’s public API, and it can be hidden by adjusting your privacy settings from "Public" to "Private."
Security researcher Hang Do Thi Duc (https://22-8miles.com/) recently discovered this "alarming amount" of information being leaked by examining the public API. The reason its happening, the researcher suggests, is because the Venmo app's default settings are set to "Public" for all users. Read more... (https://mashable.com/2018/07/18/venmo-public-transactions/)
More about Privacy (https://mashable.com/category/privacy/?utm_campaign=Mash-Prod-RSS-Feedburner-All-Partial&utm_cid=Mash-Prod-RSS-Feedburner-All-Partial), Paypal (https://mashable.com/category/paypal/?utm_campaign=Mash-Prod-RSS-Feedburner-All-Partial&utm_cid=Mash-Prod-RSS-Feedburner-All-Partial), Venmo (https://mashable.com/category/venmo/?utm_campaign=Mash-Prod-RSS-Feedburner-All-Partial&utm_cid=Mash-Prod-RSS-Feedburner-All-Partial), Mobile Payments (https://mashable.com/category/mobile-payments/?utm_campaign=Mash-Prod-RSS-Feedburner-All-Partial&utm_cid=Mash-Prod-RSS-Feedburner-All-Partial), and Api (https://mashable.com/category/api/?utm_campaign=Mash-Prod-RSS-Feedburner-All-Partial&utm_cid=Mash-Prod-RSS-Feedburner-All-Partial)http://feeds.feedburner.com/~r/Mashable/~4/ox1OuHB4_QU