Total Tests:

Venmo transaction scraped in privacy warning to consumers

By Robert Abel for SC Media
Tuesday, June 18, 2019

Ilia Kolochenko, founder and CEO of ImmuniWeb, said that this sort of transparency may often be used against the legitimate interests of end-users.

“Probably, very few of us wish to share all their payment transactions with the rest of the world even if we have nothing to hide,” Kolochenko said. “Venmo should explicitly and conspicuously notify all its users that their transactions are accessible by everyone unless they update their settings.”

Kolochenko added that developer’s API should be provided only to vetoed, properly verified third-parties within a scope of a binding legal agreement capable of protecting users’ privacy regardless of technical flaws one may discover now or in the future.

In addition he a that anti-scraping functionality should be implemented and frequently tested. Read Full Article


Previous Media Publications:

Infosecurity Magazine: Seven Million Venmo Transactions Published on GitHub

Infosecurity Magazine: Canadian City Fell Prey to a $375K Phish

Book a Call Ask a Question
Close
Talk to ImmuniWeb Experts
ImmuniWeb AI Platform
Have a Technical Question?

Our security experts will answer within
one business day. No obligations.

Have a Sales Question?
Email:
Tel: +41 22 560 6800 (Switzerland)
Tel: +1 720 605 9147 (USA)
*
*
*
*
Your data will stay private and confidential