ADVERTISEMENT

Hello Alfred app exposes user data

Hello Alfred, an in-home hospitality app, left a database accessible without password protection, exposing almost 170,000 records containing private user data.

hello alfred data leak

Image by Cybernews

Paulina Okunytė
Paulina Okunytė Senior Journalist
Oct 26, 2023 Updated: 15 November 2023 2 min read
  • First and last name
  • Email address
  • Phone number
  • Home address
  • Authentication tokens
  • Private notes
  • App signup details, such as dates, IPs, cookies, and user agents
  • Partial payment information for paid users – including the last four digits of credit card numbers, expiry month/year, and Stripe IDs
ADVERTISEMENT
Hello Alfred data leak
Source: Cybernews

Passwordless database

Hello Alfred data leak
Source: Cybernews
ADVERTISEMENT