A Popular Virtual Keyboard App Leaks 31 Million Users' Personal Data

Zack Whittaker, writing for ZDNet: Personal data belonging to over 31 million customers of a popular virtual keyboard app has leaked online, after the app's developer failed to secure the database's server. The server is owned by Eitan Fitusi, co-founder of AI.type, a customizable and personalizable on-screen keyboard, which boasts more than 40 million users across the world. But the server wasn't protected with a password, allowing anyone to access the company's database of user records, totaling more than 577 gigabytes of sensitive data. The database appears to only contain records on the app's Android users.

18.6 MB per customer?

[HuskyDog]

So, 577 GB for 31 million users? That gives us about 18.6 MB per customer!!

Clearly this is rather more than just some basic contact details and IP addresses and suggests that the bulk download of data from phones described in the article isn't just an occasional aberration.

How come the Andoid OS even allows a keyboard app access to stored data in the first place?

Re:18.6 MB per customer?

[HuskyDog]

Yes, I was writing complete rubbish and it is indeed 18.6 KB not MB. Doh!!

Makes mental note to triple check maths before posting comments! Clearly 18.6 kB could easily be the amount typed into the keyboard.