In Brief: Peloton equipment API flaw may have exposed data of millions

The same week that Peloton announced a voluntary recall of two treadmills, independent research firm, Pen Test Partners say they notified the company in January of flaws in its API that could allow unauthenticated individuals to view sensitive information, even for users who chose private mode account settings. The security firm says that the company’s initial fix did not fully solve the problem and Peleton has not fully reported how many people may have been impacted.

No-code chatbot maker Ada has raised a $130 million Series C, bringing its total funding to $190 million. The product lets customer service employees build self-service tools for customers, which would seem to put both programmers and support agents out of work. That’s progress, right?

CDPI Newsletter

Google has indicated it will introduce a “safety” section to its Google Play marketplace. Beginning next year, app developers will be required to share information on the data they collect, and how it’s stored and used. Google’s plans differ from Apple in that the focus is on whether the data is being handled responsibly, not gathering consent to what is collected and tracked. Google will also allow independent verification of the app data labels, which may add to user trust.

CDPI Privacy Newsletter

Salesforce has reversed course on its bid to acquire data management and integration platform Informatica a source has told Reuters. Informatica itself said that it is not in talks to be acquired. Salesforce stocks rose on this latest news while Informatica’s fell.

CDPI Newsletter

CDP Institute

News

In Brief: Peloton equipment API flaw may have exposed data of millions

More News

Ada Raises $130 Million for No-Code Chatbots

Google Play to add “safety” sections for mobile apps

Salesforce Abandons Informatica Acquisition: Sources