Massage app data breach reveals which clients asked for sexual favors
A massage app recently left its database containing 309,000 customer profiles exposed to the public, including information about clients who have been accused of sexual misconduct.
Urban, a London-based startup, left its database online without a password. The unprotected information included complaints from massage therapists who reported creepy clients who have requested happy ending services from them.
Researcher Oliver Hough first noticed the mishap and reported it to TechCrunch on Tuesday. Urban quickly took down the database after the security breach was discovered.
Among the leaked information were thousands of user records, including email addresses, phone numbers and names. There were also thousands of complaints by therapists about inappropriate clients, and accusations include people who wanted a “massage in genital area” and asking for “sexual services from therapist.”
“Urban is looking into this as a matter of utmost urgency,” Jack Tang, Urban’s chief executive, told Tech Crunch in a statement. “We have informed the ICO and will take all other appropriate action, including in relation to data and communications.”
One Urban user, who wanted to remain anonymous, told TechCrunch that the data leak was a “huge violation” of privacy.
Meanwhile, a spokesperson for ICO, the UK’s data protection regulator, told TechCrunch it “will asses the information we receive against data protection laws, before deciding whether or not to investigate.”
Source: Read Full Article