Tech security firm says it's easy to hack Target gift registry apps
Beware if you’re making a wish list using the apps for Target or its gift registries. Your list, along with personal information, could be accessed by hackers, according to an international security firm.
Unlike the 2013 Target data breach, customer financial information is not compromised via the wish list or registry apps, according to Patrick Dorn, a spokesman for Avast, the security firm that used the holiday season to examine some popular shopping apps. Researchers there wanted to determine what data was being collected and how secure it was.
Avast researchers found that the Target app keeps a database of users’ wish lists, names, addresses and e-mail addresses. That information could be accessed because the Target app’s Application Program Interface (API) is easily accessible over the Internet by those with the know-how, according to Filip Chytry, a researcher with Avast, one of the world’s largest anti-virus companies.