Nothing is a new tech company that has quickly gained popularity, thanks to its unique design, marketing, and, most importantly, its focus on improving the user experience. But what about the privacy of users’ data? Well, Nothing has a troubling history when it comes to handling user data.
A new report from Android Authority suggests that the data of over two thousand Nothing Community members has been leaked in a data breach. This data is accessible to anyone with internet access if they know the right steps to get there.
The data breach includes two kinds of information about a user—their public information and also private information i.e., their email addresses. Public information includes not just usernames and display names but also join dates, comment counts, and last-seen information.
It is important to note that the data appears to be from 2022, based on the last-seen information. This means that only the data of users who joined Nothing Community initially has been compromised.
While the data breach did not include passwords, it did expose email addresses linked to forum profiles. Android Authority found that this breach affected about 2,250 Nothing Community profiles, including emails for community managers ending in @nothing.tech.
Speculation suggests that the breach could be the result of an exposed API or an export file from Nothing Community’s forum management software. Despite no evidence of passwords being compromised, users are advised to change their passwords as a precautionary measure.
ALSO READ: Realme Narzo 70x 5G Launch Date Confirmed: Check Specs And Price Here
Nothing has had privacy issues in the past, notably with the Nothing Chats feature. Sunbird, the host for Nothing Chats, was not using end-to-end encryption, leading to the cancellation of Nothing Chats. Another problem was with the CMF watch, which displayed other users’ watch faces on screens, though this has been resolved.
The company has spoken out on the issue and shared a statement with Smartprix. Nothing in its statement said: “In December 2022, Nothing discovered a vulnerability, which impacted email addresses belonging to community members at the time. No names, personal addresses, passwords, or payment information were compromised. Upon this discovery nearly a year and a half ago, Nothing took immediate action to remedy the situation and bolster its security features.”
ALSO READ: How to delete an Instagram account permanently or deactivate it temporarily
You can follow Smartprix on Twitter, Facebook, Instagram, and Google News. Visit smartprix.com for the most recent news, reviews, and tech guides.