A software glitch in the New York City bicycle-sharing program has led to a breach of customers' names, contact information, credit card numbers and security codes, passwords, and birth dates. July 23, 2013 3:52 PM PDT Just before launching, the New York City bicycle-sharing program Citi Bike accidentally leaked the private account information of 1,174 of its customers, according to the Wall Street Journal. The data was exposed via a software glitch and included customers' names and contact information, credit card numbers and security codes, passwords, and birth dates. While the data leak apparently took place on April 15, a few weeks before the program launched in New York City, the company didn't notify the affected customers until July 19. According to the Wall Street Journal, Citi Bike discovered the breach at the end of May and corrected it immediately. "While there is no evidence that any personal information was maliciously accessed or misused, NYC Bike Share engaged a security firm to investigate and recommend appropriate steps to make notifications and safeguard its customers, including to provide identity and credit monitoring free of charge," New York City Department of Transportation spokesman Seth Solomonow told the Wall Street Journal. Related stories Ubisoft hacked; users' e-mails and passwords exposed Google breach may have led to sensitive data leaks LivingSocial hacked; 50 million affected Guantanamo legal files mysteriously disappear from PCs Hackers can easily breach Emergency Alert Systems Citi Bike is a city-run bike-sharing program in New York that lets users pick up and drop off bicycles at docking stations throughout the city for a $95 annual membership. The bikes are available 24-hours a day and 365 days a year. When the program launched in late May, more than 16,000 people had already signed up for the bike share. Now, Citi Bike has about 61,000 members and has served 180,000 customers, which include people buying annual, weekly, and daily passes. Security firm Identity Theft 911 told CNET that affected customers should take certain steps to safeguard their private information. Identity Theft 911 chairman Adam Levin said that users should change their passwords for other Websites if they used the same password, watch out for e-mail and text scams, and place a fraud alert on their credit file. CNET contacted Citi Bike for comment. We'll update the story when we get more information.
A software glitch in the New York City bicycle-sharing program has led to a breach of customers' names, contact information, credit card numbers and security codes, passwords, and birth dates.
Just before launching, the New York City bicycle-sharing program Citi Bike accidentally leaked the private account information of 1,174 of its customers, according to the Wall Street Journal.
The data was exposed via a software glitch and included customers' names and contact information, credit card numbers and security codes, passwords, and birth dates.
While the data leak apparently took place on April 15, a few weeks before the program launched in New York City, the company didn't notify the affected customers until July 19. According to the Wall Street Journal, Citi Bike discovered the breach at the end of May and corrected it immediately.
"While there is no evidence that any personal information was maliciously accessed or misused, NYC Bike Share engaged a security firm to investigate and recommend appropriate steps to make notifications and safeguard its customers, including to provide identity and credit monitoring free of charge," New York City Department of Transportation spokesman Seth Solomonow told the Wall Street Journal.
Related stories
- Ubisoft hacked; users' e-mails and passwords exposed
- Google breach may have led to sensitive data leaks
- LivingSocial hacked; 50 million affected
- Guantanamo legal files mysteriously disappear from PCs
- Hackers can easily breach Emergency Alert Systems
Citi Bike is a city-run bike-sharing program in New York that lets users pick up and drop off bicycles at docking stations throughout the city for a $95 annual membership. The bikes are available 24-hours a day and 365 days a year.
When the program launched in late May, more than 16,000 people had already signed up for the bike share. Now, Citi Bike has about 61,000 members and has served 180,000 customers, which include people buying annual, weekly, and daily passes.
Security firm Identity Theft 911 told CNET that affected customers should take certain steps to safeguard their private information. Identity Theft 911 chairman Adam Levin said that users should change their passwords for other Websites if they used the same password, watch out for e-mail and text scams, and place a fraud alert on their credit file.
CNET contacted Citi Bike for comment. We'll update the story when we get more information.
