True Group, Inc.

True, a security breach at a social networking app exposed one of its servers and leaked sensitive user information online for everyone to see.

A dashboard for one of the app's databases was left open to the internet without a password, making it possible for anybody to view, browse, and search the database, which contained confidential user data.

True acknowledged the security flaw but declined to respond to our specific inquiries, such as whether the company intended to notify users of the security flaw or report the incident to regulators in accordance with state laws requiring data breach notification.

Additionally displayed on the dashboard were the user's phone and email contacts, which True utilises to match with pre-existing buddies in the programme.

Source: https://techcrunch.com/2020/10/28/true-social-app-privacy-exposed-data/

"id": "TRU51721523",
"linkid": "truegroupinc",
"type": "Breach",
"date": "10/2020",
"severity": "80",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"