The Sleep Journey: Insomnia Helper app, designed to help users combat insomnia, exposed the personal information of over 25,000 users due to misconfigured Firebase servers. This breach revealed sensitive data such as names, email addresses, dates of birth, and health-related habits. While the app aimed to improve users' health, it may have jeopardized their privacy and safety instead. The potential for data scrapers to exploit this leak exacerbates the situation, prompting scrutiny of the app’s developers, Fitsia Holdings Limited.
The app aims to help people with health and quality of life; however, due to security misconfigurations, it may inadvertently achieve the opposite, as the app leaks personal information.
Researchers discovered that a misconfigured Firebase server exposed personal details of over 25,000 users of the Sleep Journey app, including names, emails, and health-related data.
Collection
[
|
...
]