US-based anonymous social media platform Yik Yak has accidently exposed the precise location data and users' unique IDs of around two million users.
After getting to know about the incident they responded by removing the user id from the posts and comments.
Each post had a location associated with it by design, and when viewing a post he app displays how far away they are from you.
The app, which was initially launched in 2013, was shut down due to its failure over cyber-bullying and harassment reputation, was relaunched last year.
TPRM report: https://scoringcyber.rankiteo.com/company/yikyakapp
"id": "yik211721822",
"linkid": "yikyakapp",
"type": "Breach",
"date": "05/2022",
"severity": "100",
"impact": "5",
"explanation": "Attack threatening the organization's existence"{'affected_entities': [{'customers_affected': 2000000,
'industry': 'Technology',
'location': 'US',
'name': 'Yik Yak',
'type': 'Social Media Platform'}],
'attack_vector': 'Accidental Data Exposure',
'data_breach': {'number_of_records_exposed': 2000000,
'type_of_data_compromised': ['Location Data', 'User IDs']},
'description': 'US-based anonymous social media platform Yik Yak has '
"accidentally exposed the precise location data and users' "
'unique IDs of around two million users.',
'impact': {'data_compromised': ['Location Data', 'User IDs']},
'response': {'remediation_measures': ['Removed user ID from posts and '
'comments']},
'title': 'Yik Yak Data Exposure Incident',
'type': 'Data Exposure'}