Starbucks Security Breach: The Media Misled You (Update 1)
**UPDATED from 01/17/14 - 07:44 PM EST with the latest, including correspondence from the man who discovered the vulnerability, on Page Two.
NEW YORK (TheStreet) -- This will be quick and to the point.
I get accused of "sensationalizing" stuff all the time so I can't let this pass. Another case of the "tech media" needing to get over itself.
Here's the headline of a recent ReadWrite article:
Starbucks App Exposed: 10 Million Customers At Risk
And, after a description of the non-situation segments of the media have been hysterical about all week, comes this more even-toned subheading:
Unsafe But Unlikely
Because, yeah, the hacker would A) have to get your phone in his or possession, B) get past the lock screen and C) know how to execute what is a pretty high-tech hack.
Of course, any security vulnerability is a concern and should get addressed by Starbucks
If somebody gets your phone, pulling off the Starbucks hack would be the least of my worries. We put so much other personal data that's within relatively easy reach on our devices that most criminals would likely look past this apparent SBUX hole if they even knew how to expose it in the first place.
This is just another example of the pretentious and self-righteous tech media getting all worked up over nothing. It's an opportunity to take shots at Starbucks and throw a monkey wrench into the emergence of mobile payments.
I wonder if any of these guys have ever been hacked. If they have, they might stop sensationalizing and speak rationally about what happens in most situations.
I recall stepping into a BART station at San Francisco International Airport a couple years ago to discover my debit card wasn't working. I called ING Direct at the time and, apparently, hackers stole my card number after I had used it at a CVS. It was either an inside job or one of those semi-sophisticated operations where your card number gets lifted out of thin air.
In any event, when I called they knew what was up. They asked me if I was tying to make a large purchase at a CVS in Texas. I said no. They said good, it wasn't going to go through anyway. And my new card was in the mail.
Not fun. Somewhat unsettling, but part of the cost of doing business in this increasingly convenient world we live in. We have somehow survived pick pockets. We'll manage in the age of the digital pick pocket.
Layers exist externally to defend oneself against this type of thing -- at your bank for instance. But, more than anything, defend yourself. Keep an eye on your stuff. Check it several times daily. If you're on top of it, you're unlikely to get hurt beyond a relatively minor inconvenience.
On Page Two -- the latest, including correspondence from Daniel Wood, the man who discovered the vulnerability.