Venmo Security Flaw Puts 200 Million Transactions in the Public Eye

Venmo Security Flaw Puts 200 Million Transactions in the Public Eye

July 19, 2018         Written By John H. Oldshue

A researcher from Berlin recently went through over 207 million public Venmo transactions from 2017. Her goal was to show flaws in Venmo’s default security settings by revealing just how much information was accessible to the public.

Hang Do Thi Duc created a website for her findings called Public by Default. The site takes you through her research process, including a public link from Venmo that shows the latest transaction on the app. Every time you refresh the page, you can see a new transaction, including the user’s first and last name as well as a link to their profile picture.

The public data displays the message attached to the transaction, along with the transaction type (payment or charge). We sifted through a handful of them and found that most were payments for food or refunds. Some of them were more specific though, like “cable bill 1/2 of 61.94.” Another said “Medssssss,” which could indicate a drug deal.

Do Thi Duc used the information readily available to dive into the lives of five unsuspecting users. She was able to learn “an alarming amount about them,” from where they live to the types of transactions they conducted, many of which were illegal. Some users had their Facebook profile picture connected to their Venmo accounts, making it easy to track them on social media.

By default, all Venmo transactions are public. Any person can view them, even if they do not have a Venmo account. Do Thi Duc encourages all users to change their settings to private, even if their transactions are harmless. “Once your information is public, it’s very difficult to get it back!”

Changing the privacy settings on Venmo is fairly simple. Go to the settings menu and click on Privacy. Select Private, and click on the area for “Past transactions.” Select Change All to Private to hide past transactions as well as future ones.



The information contained within this article was accurate as of July 19, 2018. For up-to-date
information on any of the terms, cards or offers mentioned above, visit the issuer's website.


john-oldshue

About John H. Oldshue

John Oldshue is the creator of LowCards.com. He worked for over 15 years in television and won an Emmy award for his reporting. He covers credit card rate issues for LowCards.com.
View all posts by John H. Oldshue
Featured Low Interest Card
Top Features : 1.25X miles on every purchase; no annual fee; bonus of 20,000 miles once $1,000 is spent in first 3 months
Featured Cash Back Card
Top Features : 1.5% cash back on all purchases; $150 bonus after spending $500 in first 3 months
Featured No Annual Fee Card
Top Features : Earn cash back TWICE. 1% when you buy plus 1% as you pay; 0% APR for 18 months on balance transfers
Featured Bad Credit Card
Top Features : Perfect credit not required; Reports to major credit bureaus
Featured Fair Credit Card
Top Features : No annual fee; access to higher credit line after making first 5 monthly payments on time
Featured Limited/No Credit
Top Features : No annual fee; reports to major credit bureaus; access to higher credit line after making first 5 monthly payments on time