When you type a password into a mobile payment app, you'd probably expect it to protect that password somehow. But it seems that the Starbucks app for iOS doesn't actually lock its usernames and passwords down. According to a Computerworld report, company executives admitted today that the mobile app stores passwords in clear text, with no encryption of any sort. By connecting your phone to a computer, the report claims, someone could easily retrieve your password from a crash log.
What's more, it appears that Starbucks may not intend to actually fix the problem. While the company told both Computerworld and The Seattle Times that the company had "taken steps to safeguard customers' information," it's unclear what steps it could have taken.Read more