Target Wish List App Exposes Users’ Data to a Potential Breach -- Security Today

Target Wish List App Exposes Users' Data to a Potential Breach

By Sydny Shepard
Dec 16, 2015

Hackers can access your personal information from Target – again – thanks to a flaw in the retailer’s mobile app.

In a blog post, security researchers from Avast revealed the flaw, wish allows unauthorized access to customers’ addresses, phone numbers and other personal information from wish lists created with the Target app. Target shoppers do catch a break this Christmas season as credit card information doesn’t seem to appear to be stored with the wish lists.

Avast said it discovered the flaw while examining the security and privacy levels of various mobile buying apps. During their investigation, researchers looked at what permissions were granted to users, in additions to trying to hack the apps.

As of mid-December, Target has been notified of the problem and has disabled certain elements of its wish list.

“We apologize for any challenges guests may be facing while trying to access their registry," Molly Snyder, a communications manager at Target, said in a statement. "Our teams are working diligently overnight to resume full functionality."

About the Author

Sydny Shepard is the Executive Editor of Campus Security & Life Safety.

Featured

Strengthening Healthcare Security with Sentri-Zone

With over half of physicians feeling unprotected at work, Sentri-Zone offers a proactive shield against the rising tide of healthcare violence. Read Now
- Hospital
- Facility Security
- Physical Security
Executive Protection in a Noisy World: Why Speed and Defensibility Matter

CSOs are not short on data; they are short on time and trust. This is particularly true when it comes to Executive Protection (EP) in a high-velocity threat environment, where an online post can escalate into a real-world incident within minutes. Read Now
FBI Warns of Potential Iranian Drone Threat to California Coast

Federal intelligence suggests sea-based unmanned aerial vehicle strikes are being considered as retaliation for the ongoing Middle East conflict. Read Now
- Homeland Security
- Government
- Incident Response
How Agentic AI Will Shape the Autonomous SOC at Scale at ISC West 2026

SOCs, a relatively new phenomenon in the field of security, have seen steady, incremental improvements since their inception in the 90s. Fast forward to today, and the architecture of threat detection and response has dramatically outpaced the teams responsible for its oversight. Read Now
March Patch Tuesday Minimal Risks Highlight Shadow AI Threats

Security leaders urged to prioritize internal AI audits over low-impact vulnerabilities as Microsoft releases a quiet monthly update. Read Now

Security Today eNews

Sign up today for essential industry news and product information that can help you stay afloat in the fast-paced world of security.

Email Address*Country*

Please type the letters/numbers you see above.

Webinars

Whitepapers

New Products

EasyGate SPT SPD

Security solutions do not have to be ordinary, let alone unattractive. Having renewed their best-selling speed gates, Cominfo has once again demonstrated their Art of Security philosophy in practice — and confirmed their position as an industry-leading manufacturers of premium speed gates and turnstiles.
4K Video Decoder

3xLOGIC’s VH-DECODER-4K is perfect for use in organizations of all sizes in diverse vertical sectors such as retail, leisure and hospitality, education and commercial premises.
PE80 Series by SARGENT / ED4000/PED5000 Series by Corbin Russwin

ASSA ABLOY, a global leader in access solutions, has announced the launch of two next generation exit devices from long-standing leaders in the premium exit device market: the PE80 Series by SARGENT and the PED4000/PED5000 Series by Corbin Russwin. These new exit devices boast industry-first features that are specifically designed to provide enhanced safety, security and convenience, setting new standards for exit solutions. The SARGENT PE80 and Corbin Russwin PED4000/PED5000 Series exit devices are engineered to meet the ever-evolving needs of modern buildings. Featuring the high strength, security and durability that ASSA ABLOY is known for, the new exit devices deliver several innovative, industry-first features in addition to elegant design finishes for every opening.