Uber, Fitbit, OkCupid info exposed by massive data breach

(WFLA) – A serious data breach impacting nearly 3,400 websites and apps including Uber and FitBit may have leaked sensitive data across the internet for months.

CloudFare, a cyber security company warned customers of a critical bug that could have exposed a range of sensitive information including usernames, passwords, and other information onto the open internet.

“The bug was serious because the leaked memory could contain private information and because it had been cached by search engines,” Cloudflare stated in a blog post.

The flaw was identified late last week by Googles security researcher Tavis Ormandy who said he found said he found “private messages from major dating sites, full messages from a well-known chat service, online password manager data, frames from adult video sites, hotel bookings.”

Uber said passwords were not exposed and that “only a handful of session tokens” needed to be fixed. Fitbit said it was still assessing the bug’s impact.

OkCupid is investigating the matter and said in a statement they will take the necessary steps to protect its users.

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s