An unsecured database with more than 61 million records has exposed Apple and Fitbit customers, according to a Sept. 13 ZD Net report.
Five things to know:
- WebsitePlanet and cybersecurity researcher Jeremiah Fowler said the unsecured database belonged to GetHealth, which stores health and wellness data from hundreds of wearables, medical devices and apps, according to the report.
- On June 30, the cybersecurity team discovered the database online and determined that it was not password protected, ZD Net reported. The team claims that more than 61 million records were held on the data repository, including sensitive health information such as names, birthdates, GPS logs, height, weight and more.
- A sampling of 20,000 records uncovered that the majority of the exposed records were from Fitbit and Apple's HealthKit, according to the report.
- The team notified GetHealth of the breach, and the system was secured within a few hours. WebsitePlanet said it is unclear how long the records were exposed or who may have been able to access them.
- "We are not implying any wrongdoing by GetHealth, their customers, or partners," WebsitePlanet said. "Nor, are we implying that any customer or user data was at risk. We were unable to determine the exact number of affected individuals before the database was restricted from public access."