Gravy Analytics, a major location data broker, disclosed a data breach that may have compromised the sensitive location data of millions of users. The breach involved unauthorized access to Gravy's cloud storage environment, raising concerns about the security and privacy of user information collected from mobile apps.
Last week, major location data broker Gravy Analytics disclosed a data breach that may have resulted in the theft of precise location data for millions of people, reports TechCrunch. That appears to include data from popular mobile games like Candy Crush, as well as dating apps, pregnancy tracking apps, and more, as 404 Media wrote on Thursday, following up its report of the breach two days earlier.
Baptiste Robert, CEO of digital security company Predicta Lab, said in a series of posts Wednesday that the small sample data set published in a Russian forum contained data for “tens of millions of data points worldwide” and included “sensitive locations like the White House, Kremlin, Vatican, military bases, and more.” As TechCrunch notes, the sample alone contained more than 30 million locations. Gravy said in its disclosure to the Norwegian Data Protection Authority that it “identified unauthorized access to its AWS cloud storage environment” on January 4th. It says in the disclosure that it’s still investigating how long hackers had access to its cloud environment and whether the hack “constitutes a reportable personal data breach.” As for what or who was affected, the company writes: >Gravy Analytics is working diligently to determine the scope of the incident and the nature of the information involved. Preliminary findings indicate that an unauthorized person obtained certain files, which could contain personal data. These are currently being analyzed. If it is determined that personal data is involved, that personal data is likely associated with users of third-party services that supply this data to Gravy Analytics. Gravy Analytics was one of two data brokers targeted last month in a proposed FTC order that forbids it from “selling, disclosing, or using sensitive location data in any product or service.” The FTC at the time wrote that its subsidiary, Venntel, collected data from apps and sold access to that data to businesses or government agencies, including the IRS, DEA, FBI, and ICE
Data Breach Gravy Analytics Location Data Privacy Security
United States Latest News, United States Headlines
Similar News:You can also read news stories similar to this one that we have collected from other news sources.
Data Breach at Gravy Analytics Poses Threat to LGBTQ+ UsersA potential data breach at Gravy Analytics, a location data broker, has raised serious privacy concerns, particularly for members of the LGBTQ+ community in countries where homosexuality is illegal. The leaked data allegedly includes the locations of millions of users, potentially exposing sensitive information.
Read more »
Location data broker Gravy Analytics was seemingly hacked, experts sayKevin Collier is a reporter covering cybersecurity, privacy and technology policy for NBC News.
Read more »
Over 4,600 RBFCU customers’ data may be leaked in data breach, Texas AG’s office saysRandolph Brooks Federal Credit Union said someone physically breached one of its ATMs. The Texas Attorney General’s Office said the breach potentially exposed the banking information of 4,607 customers.
Read more »
Massive Data Breach at National Public Data Exposes 2.9 Billion RecordsA class action lawsuit alleges that hackers stole 2.9 billion personal records from National Public Data, exposing sensitive information like Social Security numbers and addresses. The breach highlights the growing threat of data breaches and the importance of strong online security.
Read more »
Rivers Casino Philadelphia Data Breach Exposes Customer DataRivers Casino Philadelphia has confirmed a data breach that may have exposed customer information, including social security numbers and bank details. The breach was discovered in November 2024 and customers were notified in December 2024. A lawsuit has been filed seeking class-action status and damages.
Read more »
Massive Data Breach Exposes Exploitation of Apps for Location Data HarvestingA hack of location data company Gravy Analytics reveals that thousands of popular Android and Apple apps are being exploited to collect sensitive location data on a massive scale, often without the knowledge of users or app developers. The data is being harvested through the advertising ecosystem rather than app code, indicating a disturbing trend in the mobile app industry.
Read more »