Skip to main content
  1. Tech
  2. Gadgets & Tech
  3. Tech Gear

Starbucks app left personal info on app easily accessible to hackers

See also

The app that allows Starbucks customers to purchase food and drinks from their phone has been storing passwords and personal information in a very vulnerable fashion. According to CNN Money on Jan. 17, the app was keeping all this sensitive information in plain text, which means anyone who wanted the information could just plug the phone into a computer and have the ability to access it, without even needing the phone’s passcode.

Starbucks pushed an update for the app on Thursday night for the iOS apps but not for Android phones. The company admitted that the app left personal information pretty out in the open but has said no one reported hacking as a result of the flaw.

The man who discovered the issue, security researcher Daniel Woods, said he reached out in December after he discovered the issue after doing his own tests. However, he received no response, so he posted about the issue online. As we’ve seen before, once the issue was well-know, Starbucks then contacted him.

The Verge reports that the issue could only be solved with an app update, which Starbucks did. However, this version of the app has been available since May, which left a pretty large time frame for information breaches.

If you’ve misplaced your phone lately and are using that app, it might be time for a precautionary password change. You never know when a hacker may want to reap some caffeinated rewards.


Don't Miss

  • Crew
    'The Crew' preview: Ubisoft has on its hands the 'Destiny' of racing games
    Games Preview
  • Cell phone
    A bill legalizing unlocking phones has passed Congress and is expected to be signed into law
    Tech Buzz
  • Destiny
    The 'Destiny' beta: 7 things we absolutely love about Bungie's new franchise
    Games Feature
  • Cortana
    Cortana takes on Siri in a hilarious new commercial for the Windows Phone
    Tech Buzz
  • Unity Exclusive
    'Assassin's Creed Unity' exclusive: Tell the world, 'I'm coming home'
    Games Interview
  • Typing
    Is your brokerage account safe from the attacks of cyber thieves?

Related Videos:

  • Twitter
    <div class="video-info" data-id="517839330" data-param-name="playList" data-provider="5min" data-url=""></div>
  • Google research
    <div class="video-info" data-id="518340583" data-param-name="playList" data-provider="5min" data-url=""></div>
  • Attendees gather at the Apple Worldwide Developers Conference at the Moscone West center on June 2, 2014 in San Francisco, California. Apple CEO Tim Cook kicked off the annual WWDC which is typically a showcase for upcoming updates to Apple hardware and s
    <div class="video-info" data-id="518310091" data-param-name="playList" data-provider="5min" data-url=""></div>