Hot Potato: With more devices connected to the internet every day, and information constantly being stored and shared, data security is sure to become a constant concern. This is an example of how not caring about sensitive data can increase risks indefinitely, as millions of people are exposed simply by wearing trackers during their workouts.
According to cyber security researcher Jeremiah Fowler at WebsitePlanet, 61 million users of wearable fitness devices viewed their data online because the database is centralized containing their unprotected information.
The owner of the visual database, according to Fowler and his team's analysis methods, is GetHealth, an API that serves as an "integrated solution for accessing health and wellness data from hundreds of wearable medical devices and software." More research has shown that the information contains potentially sensitive information, including names, dates of birth, weight, height, gender, and even geographic location. In addition, the researchers found that the flow of this information could be traced to sources such as Fitbit, Microsoft Band, Misfit Wearables, Google Fit, and Strava, whose users were from all over the world. They were all stored in plain text, while one identifier was encrypted.