LifeLock Pulls Its Wallet App Over Data Concerns

apple-adds-2fa-2

Apparently keeping tabs on your personal information via an app might leak personal information.

According to Graham Cluley, former security researcher with Sophos, an identity protection app from LifeLock was pulled from the Apple, Google, and Amazon app stores. CEO Todd Davis said that LifeLock Wallet failed to satisfy requirements set for by the Payment Card Industry (PCI). He didn't state explicitly which requirements, but there is one requirement specifically related to storing credit card information.

In a blog, Davis wrote

"One thing I’ve learned in business and, for that matter, life is the importance of authenticity and transparency.

"With that in mind, I want to make you aware of an issue that we identified related to our recently acquired LifeLock Wallet application. We have determined that certain aspects of the mobile app may not be fully compliant with payment card industry (PCI) security standards.

"For that reason, we are removing the LifeLock Wallet application from the App Store, Amazon Apps, and Google Play, and when users open the LifeLock Wallet, their information will be deleted in the app."

Information typically stored in the LifeLock Wallet app includes passport numbers, credit card numbers, merchant club card numbers, and other personal information.

Davis emphasizes that there is no evidence of a data breach, however, he goes to state

"We have taken steps to delete all stored information for the mobile app from our servers. Even though we have no reason to believe the data has been compromised, we believe this is the right thing to do. As a company dedicated to online security and safety, we are committed to doing everything we can to ensure those who trust us with their personal information can do so without question."

Whitepaper: Eliminate Mobile Shelfware, The Four Critical Elements Of Success