McDonald’s India delivery app leaks private data of users
A security firm has found that McDonald’s delivery app in India leaked personal information of almost 2.2 million users.
An inadequately configured server provide access to anyone of the names, emails, home addresses and phone numbers of users, said Fallible, a security firm.
Fallible further added that sending a simple command to the server produced lots of information about users.
But McDonald’s India said that it had fixed the app and recommend users to install the updated version that will be more secure to use.
The McDelivery app is controlled by Westlife Development which watches over McDonald’s restaurants in south and west India.
In a report sent to the Times of India, McDonald’s India said the app did not accumulate any “sensitive financial data” such as credit card numbers, passwords or bank account details.
“The website and app have always been safe to use and we update security measures on a regular basis,” it informed the newspaper.