Lumension® Endpoint Intelligence Center

Intelligence Center » News Archive » Exercise-tracking app not QUITE fit for purpose

Exercise-tracking app not QUITE fit for purpose

2014/09/22

The Register - (International) A researcher identified and reported a direct object reference vulnerability in the MyFitnessPal app that allowed users' personal information, including location and dates of birth, to be accessed by any user. The vulnerability was closed 2 days after being reported.

Source: http://www.theregister.co.uk/2014/09/22/exercise_tracking_app_not_quite_fit_for_purpose/

Note: This news synopsis is taken from the DHS Daily Open Source Infrastructure Report, a daily [Monday through Friday, except US Federal holidays] summary of open-source published information concerning significant critical infrastructure issues; a 10-day archive of the DOSIR can be found at: http://www.dhs.gov/dhs-daily-open-source-infrastructure-report.


Last Updated: 27 May 2016 10:21:47