- How to Avoid a Delayed Flight and Other Air Travel Woes
- IPhone 6 Feature Prevents Law Enforcement From Accessing Your Data
- Go Big or Go Home: The Million-Dollar Halloween Costume
- Pop Quiz: Does an Airline Have to Put You Up in a Hotel When Your Flight is Canceled?
- The Restless Project: $60K Income Doesn’t Cut It for My Family
- Target May Be Starting a Free-Shipping War
- Who is the Richest Person in Your State?
- MasterCard Introducing Fingerprint-Scanning Credit Card
Does this admission shock you? When a security expert revealed this week how lax the security is on Starbucks’ payment app, the company said: “That was not something that was news to us.”
The security expert, Daniel Wood, said that user passwords, email addresses, user names and GPS location files are stored in clear text in Starbucks’ mobile payment app.
What does that mean to you, Starbucks customer? Plenty, if your phone is stolen. Explains the Los Angeles Times, “By connecting the device to a computer, [thieves] could download all of the information above within 30 minutes, whether the smartphone is protected with a security code or not.”
Starbucks doesn’t encrypt the information or store it on its servers because then customers would have to log in every time they use the app to pay for coffee, says the Times. What a dreadful inconvenience that would be!
This is the most widely used payment app in the U.S., Computerworld says.
You’d think a company would do better than that. Still, a Computerworld reader pointed out, this isn’t in the same ballpark as the massive data breach at Target, where the information of up to 110 million customers was compromised.
How can you protect yourself from the Starbucks app? Don’t allow the app to automatically dip into your bank account for more funds. And don’t use your Starbucks password for any other accounts.