Smartphones are full of apps and games that make life easier and more enjoyable, but a recent data breach reveals that many of these popular apps may not be as private or secure as we think. A report from 404 Media, published on January 9, has raised serious concerns about how some apps collect and share users' sensitive location data.
How did the breach happen?
The breach, which involved Gravy Analytics, a location data broker, has shed light on how apps may be tracking users without their knowledge. Details are still coming in, but the hacker was able to access several terabytes of consumer data from Gravy Analytics, including information from popular apps like Candy Crush Saga and Tinder.
This breach is particularly alarming because it comes closely on the heels of a Federal Trade Commission ruling that banned Gravy Analytics and its subsidiary, Venntel, for selling consumer location data without consent.
What was exposed?
The leaked database reportedly contains more than 30 million location data points, including some devices that have been tracked in high-security areas such as the White House, Kremlin, Vatican City, and military bases around the world. Gravy Analytics does not typically work directly with apps to collect this data. They usually partner with advertising agencies that access user data on both Android and iOS devices.
How do you keep your data safe?
Once your data becomes part of a breach, there is very little that one can do about it. What you can do though to protect your personal information in the future is to take away as much unnecessary permission as possible from an app during installation. On iOS users, you have the "Ask apps not to track," which limits the amount of data shared with third parties.