/https%3A%2F%2Fblueprint-api-production.s3.amazonaws.com%2Fuploads%2Fcard%2Fimage%2F813129%2F824b6d81-a5cf-4216-9358-7e74d68c9f23.png)
Next time you make a payment on Venmo, beware: almost anyone can track it.
The popular mobile payments app is sharing users’ personal data — including real names, comments sent with the payment, transaction dates, and recipients of the transaction — with the public by default. This information is being exposed through company’s public API, and it can be hidden by adjusting your privacy settings from “Public” to “Private.”
Security researcher Hang Do Thi Duc recently discovered this “alarming amount” of information being leaked by examining the public API. The reason its happening, the researcher suggests, is because the Venmo app’s default settings are set to “Public” for all users. Read more…
More about Privacy, Paypal, Venmo, Mobile Payments, and Api