Report: Starbucks app exposes user passwords

Seattle – The Starbucks mobile app reportedly stores customer passwords in a way that leaves them vulnerable to hackers. According to CNN, the app, which allows mobile payment, stores passwords in plain text, meaning a hacker could gain access to one without knowing a smartphone’s PIN code.



To steal a user password, the hacker would have to plug the smartphone into a computer and also have knowledge of how to gain access to a plain text file. However, doing so would allow a thief to spend money from a customer’s Starbucks account and potentially reveal password data that could be used on other digital accounts the customer holds.



Starbucks representatives told CNN that there are no reports of any Starbucks customers having their mobile app hacked, but gave no other information.