A hot irish potato: With more devices connected to the internet each day, constantly storing and sharing information, information security is certain to become a perennial concern. This case sets an instance of how lack of care with sensitive information can brand risks escalate indefinitely, as millions of people were exposed merely by wearing tracking devices during their workout sessions.

As reported by cybersecurity researcher Jeremiah Fowler on WebsitePlanet, 61 million users of fitness article of clothing devices ended up with their data exposed online, equally a centralized database containing their data was found unprotected.

The owner of the exposed database, according to analytics procedures by Fowler and his team, was GetHealth, an API touted as an "unified solution to access health and wellness information from hundreds of wearables, medical devices, and apps."

Further investigation revealed that the data independent potentially sensitive data, including peoples' names, dates of birth, weight, tiptop, gender and fifty-fifty geo location. Additionally, the researchers found out that the flow of this data could exist traced back to sources like Fitbit, Microsoft Band, Misfit Wearables, Google Fit and Strava, and their users were from all effectually the world. All of it was stored in plain text, while a single ID was encrypted.

After confirming ownership of the information, Fowler privately contacted GetHealth, whose response to the notification was quick. The company, later on the same day, thanked the researcher, asserting that the issue had been resolved.

It is non articulate, though, for how long the 16.71 GB of users' data were kept exposed, nor even who might have had access to the database during that period.

WebsitePlanet also warns of the dangers surrounding health data stored in habiliment devices: "Information technology is a well-known fact that the health industry experiences more information breaches than any other sector. According to a report conducted by Trustwave, healthcare information tin can sell for up to $250 per record on the black market or dark web. That is a considerable sum compared to credit card records that are valued at an estimated $5.40."

Epitome credit: WebsitePlanet