Ever felt a chill down your spine when you think about how much personal information you share online?
Temu gained attention in 2023 following reports of a significant data breach.
According to reports, private and sensitive user data may have been compromised.
Let's examine the specifics of the Temu data leak and consider any possible effects.
On September 20, 2023, a class action complaint was filed against Temu, a Chinese app, claiming careless handling of customer information and deliberately introducing malware into the program.
This malware uses a script that downloads unencrypted files containing personal data to the company's servers while remaining undetectable on a mobile device.
After Temu's Chinese sibling app was removed from Google's app store due to "malware," the U.S. has accused the discount retailer of potentially posing a data risk. However, analysts say they are not overly concerned.
Temu is not an online marketplace like Amazon or Walmart. It is a data-theft business that sells goods online as a means to an end. Today I have filed a first-of-its-kind state lawsuit against the parent companies of @ShopTemu—PDD Holdings Inc. and WhaleCo Inc.—for violating the… pic.twitter.com/zp1m0Pwi0A
— Attorney General Tim Griffin (@AGTimGriffin) June 25, 2024
One analyst said Temu is "not as aggressive" as Pinduoduo, which Google blocked in March after copies made available outside Google's Play store were discovered to contain malware.
The Chinese online retailer rejected Google's allegations that the Pinduoduo app was an "identified malicious app" and advised customers to uninstall it.
According to reports, the software asks for too many rights to access personal data and does not take the required security precautions to protect it properly.
The lawsuit claims Temu has sold and disclosed vast amounts of customer data. However, more research is required before the extent of the data breach can be determined.
Temu's data permissions are so lenient that the software can access almost every aspect of a mobile device, including the audio and camera. This makes the data acquired especially broad, in addition to the access needed to complete financial transactions.
It might consist of (but is not restricted to) Biometric information, Complete names, Physical locations, Numbers to call, Money details, SSN, Dates of Birth, and Contact lists on mobile devices.
Griffin filed a lawsuit, claiming that the shopping app unlawfully gathers user data and sells it to third parties against the parent firms of Temu, an online store. According to the complaint filed against Whaleco Inc. and PDD Holdings Inc.,
The app is “purposefully designed to gain unrestricted access to a user’s phone operating system,” including a user’s camera, specific location, contacts, text messages, documents, and other applications.…
Once installed, Temu can recompile itself and change properties, including overriding the data privacy settings users believe they have in place.”
The impacts might be severe if Temu user data has been compromised. The following are a few possible privacy risks:
Credit card abuse, bank account draining, and fraudulent transactions can result from unauthorized access to financial information.
Hackers can use stolen personal information to take over active accounts, such as email, social media, or online banking.
Exposure to data can be used to construct highly targeted phishing attacks, which can trick users into disclosing private information or installing malware.
Private communications, location data, and other sensitive information can be exploited for extortion and blackmail.
Removed information may be sold to data brokers, who then use it to build comprehensive profiles of people for purposes like targeted advertising.
Identity thieves can fabricate false identities and perpetrate fraud using this information.
Temu data breaches can be very concerning since they may reveal your personal information. You can take the following actions to protect yourself:
You can use PurePrivacy to search the dark web for your personal data, get alert notifications in case of possible breaches, and take prompt preventative action.
You can maintain online anonymity and stop unauthorized tracking by regularly erasing your search history.
You can remove personal information from 200+ data brokers, which lowers your risk of identity theft and targeted advertising.
You can enhance online privacy by identifying and blocking web trackers from collecting personal data, browsing history, and online blueprints.
According to the lawsuit, Temu's program allegedly has covert access to "a user's camera, specific location, contacts, text messages, documents, and other applications." The lawsuit also claims Temu can modify properties, recompile itself, and override user-specified data privacy settings.
The lawsuit highlights the risks of giving information to a Chinese corporation, which calls Temu "dangerous malware" and asserts that Temu can gather a lot of data from the machines on which it is installed.
Many customers complain that their bank accounts have been compromised after using Temu to make purchases. Temu was the target of a class action lawsuit because the program contained malware and spyware. You are advised to refrain from using Temu.
Jake stated to MailOnline that Temu is a Chinese app; thus, it may be permitted to provide the Chinese government access to company data. This can be concerning because, in the case of most businesses, you can be confident that the information won't be seen by third parties when they claim it won't.
The Temu data breach publicized sensitive customer information, exposing the platform's weaknesses. This data breach emphasizes how crucial it is for online marketplaces to have strong data security protection to maintain customer privacy.