New York AG Settles With Companies Over App Security
15 December 2018 - 6:50AM
Dow Jones News
By Patrick Thomas
The New York attorney general's office said Friday it has
reached a settlement with five companies accused of failing to keep
sensitive information in their mobile apps secure.
The settlement with Western Union Co. (WU), Booking Holdings
Inc.'s (BKNG) Priceline.com, Equifax Inc. (EFX), Spark Networks
Inc. (LOV) and Credit Sesame Inc. requires each company to
implement comprehensive security programs to protect user
information.
The New York attorney general's office said the apps had a
well-known security vulnerability that could have allowed
information, such as passwords, social-security numbers,
credit-card numbers and bank-account numbers, to be hacked. The
companies also didn't test the apps for the flaw, according to the
New York attorney general's office.
The apps allegedly failed to establish a secure connection to
the internet and were susceptible to hackers using the same public
WiFi in a coffee shop or at an airport, the New York attorney
general's office said.
"Businesses that make security promises to their users,
especially as it relates to personal information, have a duty to
keep those promises," New York Attorney General Barbara Underwood
said in a statement.
None of the companies involved in the settlement responded
immediately to request for comment.
Write to Patrick Thomas at patrick.thomas@wsj.com
(END) Dow Jones Newswires
December 14, 2018 14:35 ET (19:35 GMT)
Copyright (c) 2018 Dow Jones & Company, Inc.
Western Union (NYSE:WU)
Historical Stock Chart
From Oct 2024 to Nov 2024
Western Union (NYSE:WU)
Historical Stock Chart
From Nov 2023 to Nov 2024
