Comment

Comment on Nothing pulls its iMessage app from the Play Store following privacy disaster

AnActOfCreation@programming.dev ⁨10⁩ ⁨months⁩ ago

I used to use Mint until I did some looking into Plaid. They present a login screen that looks like your bank and you assume they’re doing some kind of OAuth. Nope they’re just taking your full banking credentials and you have to hope they’re safe. I think Plaid is a ticking time bomb. When it gets hacked a lot of people will be in trouble.

source

Sort:hotnew top

lledrtx@lemmy.world ⁨10⁩ ⁨months⁩ ago
Are you sure about Plaid? Because jesus I’ve signed in through Plaid many times.

source
- AnActOfCreation@programming.dev ⁨10⁩ ⁨months⁩ ago
  Yep (and I had the same reaction).
  
  From their privacy policy.
  
  Data you provide to us. When you use Plaid’s products or services, like when you connect your financial accounts (like your bank accounts) to a developer’s app through Plaid, we may collect the following data from you:
  
  identifiers like name, email address, and phone number;
  
  login data when required by the provider of your account, like your username and password, account and routing number, or a security token.
  
  when needed, data to help verify your identity and/or connect your accounts, including your Social Security number, date of birth, security questions and answers, documentary ID and one-time password (OTP).
  
  plaid.com/legal/#consumers
  
  Additional reading: …stackexchange.com/…/is-plaid-a-service-which-col…
  
  source
  - lledrtx@lemmy.world ⁨10⁩ ⁨months⁩ ago
    Oh Lord. I have all my money in one account and have used Plaid on it. If it were to get hacked, I would be ruined lol. Not a lot of money but that’s all I have.
    
    Thanks so much for telling me this!
    
    source