Newsnews
News

Fertility Tracking App Glow Fixes Bug Exposing Users’ Personal Data

Written by: Minny Head | Published: 14 February 2024
fertility-tracking-app-glow-fixes-bug-exposing-users-personal-data
News

A bug in the fertility tracking app Glow’s online forum has led to the exposure of personal data belonging to approximately 25 million users. The bug, which was discovered by security researcher Ovi Liber, allowed access to users’ first and last names, self-reported age groups, location, unique user identifier, and any user-uploaded images. The bug was found leaking data from Glow’s developer API, which was accessible to anyone, not just developers. Liber reported the bug to Glow in October, and it was fixed about a week later.

Key Takeaway

The bug in Glow’s online forum exposed personal data of around 25 million users, raising concerns about the app’s data security and privacy measures.

Security Vulnerability

Liber found that the vulnerability he discovered affected all 25 million users of Glow. He mentioned that accessing the data was relatively easy, highlighting the seriousness of the security flaw. Glow’s API, which should have been restricted to developers, was in fact a public endpoint, allowing unauthorized access to user data.

Response and Impact

While an unnamed Glow representative confirmed that the bug has been fixed, the company declined to discuss the bug and its impact on the record or provide the representative’s name. This lack of transparency raises concerns about the potential impact on users and their data privacy.

Expert Opinion

Eva Galperin, the cybersecurity director at the Electronic Frontier Foundation, emphasized the significance of the data leak, stating that Glow users might reconsider their use of the app if they were aware of the exposed data. This incident raises questions about the security and privacy measures in place to protect users’ sensitive information.

Previous Incidents

This is not the first time Glow has faced privacy and security issues. In 2016, Consumer Reports found that users’ data and comments about their personal lives were accessible due to a privacy loophole. Additionally, in 2020, Glow agreed to pay a fine of $250,000 following an investigation by California’s Attorney General, which accused the company of failing to adequately safeguard users’ health information and allowing access to user information without their consent.

Leave a Reply

Your email address will not be published. Required fields are marked *

Related Post

Related Posts

Fertility Precision: Assessing The Accuracy Of Fitbit’s Fertility Tracker
Wearables

Fertility Precision: Assessing The Accuracy Of Fitbit’s Fertility Tracker

by Doria English | 18 January 2024
What Security Risk Does A Public Wifi Connection Pose
TECHNOLOGY

What Security Risk Does A Public Wifi Connection Pose

by Lorie Roque | 17 August 2023
Fertility Doctor Who Fathered 600 Netflix
TECHNOLOGY

Fertility Doctor Who Fathered 600 Netflix

by Neilla Pete | 5 August 2023
How Can I Tell If My Smartphone Has A Virus
TECHNOLOGY

How Can I Tell If My Smartphone Has A Virus

by Joya Hardaway | 6 October 2023
How To Download From Unknown Sources
How To

How To Download From Unknown Sources

by Joyan Cleary | 29 September 2023
How To Keep Smartphone Secure
TECHNOLOGY

How To Keep Smartphone Secure

by Lorie Roque | 6 October 2023
How To Turn Off Mac Keyboard Light
TECHNOLOGY

How To Turn Off Mac Keyboard Light

by Shawnee Danielson | 14 August 2023
What Do Open Banking Ecosystem Exposed Services Allow
FINTECH

What Do Open Banking Ecosystem Exposed Services Allow

by Loleta Detweiler | 11 November 2023

Recent Stories

How to Use Email Blasts Marketing To Take Control of Your Market
How-To Guides

How to Use Email Blasts Marketing To Take Control of Your Market

by Minny Head | 10 May 2024
Learn To Convert Scanned Documents Into Editable Text With OCR
Software Tutorials

Learn To Convert Scanned Documents Into Editable Text With OCR

by Minny Head | 26 April 2024
Top Mini Split Air Conditioner For Summer
Buyer's Guides

Top Mini Split Air Conditioner For Summer

by Minny Head | 26 April 2024
Comfortable and Luxurious Family Life | Zero Gravity Massage Chair
Buyer's Guides

Comfortable and Luxurious Family Life | Zero Gravity Massage Chair

by Minny Head | 26 April 2024
Fintechs and Traditional Banks: Navigating the Future of Financial Services
General Fintech

Fintechs and Traditional Banks: Navigating the Future of Financial Services

by Minny Head | 18 April 2024
AI Writing: How It’s Changing the Way We Create Content
AI

AI Writing: How It’s Changing the Way We Create Content

by Minny Head | 3 April 2024
How to Find the Best Midjourney Alternative in 2024: A Guide to AI Anime Generators
Digital Media & Creative Tech

How to Find the Best Midjourney Alternative in 2024: A Guide to AI Anime Generators

by Minny Head | 28 March 2024
How to Know When it’s the Right Time to Buy Bitcoin
Cryptocurrency

How to Know When it’s the Right Time to Buy Bitcoin

by Minny Head | 28 March 2024