Security News > 2020 > March > Walgreens Mobile App Leaks Prescription Data

Walgreens Mobile App Leaks Prescription Data
2020-03-02 16:17

Popular pharmacy chain Walgreens is warning that a bug in its official mobile app may have exposed sensitive data, including customers' full names and information on prescriptions for medications they are taking.

While Walgreens did not detail the technical glitch, it said that the internal application error enabled certain personal messages, stored in a database, to be viewed by other customers who were using the mobile app.

"As part of our investigation, Walgreens determined that certain messages containing limited health-related information were involved in this incident for a small percentage of impacted customers," according to a Walgreens data security incident customer notification, filed with the Office of the Attorney General and published Friday.

After the issue was discovered on Jan. 15, "Walgreens promptly took steps to disable the message viewing feature within the Walgreens mobile app to prevent further disclosure until a permanent correction was implemented to resolve the issue," according to the notice.

The Walgreens mobile app on the Google Play app marketplace has more than 10 million downloads.


News URL

https://threatpost.com/walgreens-mobile-app-prescription-data/153361/