TeenSafe phone-monitoring app leaks ‘tens of thousands’ of accounts

By Trevor Mogg Published May 21, 2018

Richard Baker/Getty Images

Account information belonging to “tens of thousands” of TeenSafe accounts has reportedly been exposed online.

Recommended Videos

The cross-platform service allows parents to track the smartphone usage of their children, including their social media interactions, web history, call logs, installed apps, and real-time location. The Los Angeles-based company behind the service says more than a million parents currently use the service.

But a U.K.-based security researcher recently discovered that at least one of its servers has leaked numerous accounts belonging to parents and their children, ZDNet reported on Sunday.

The server in question had been left unprotected, meaning anyone with the know-how could access it. After informing TeenSafe of the issue, the company acted swiftly to fix it.

“We have taken action to close one of our servers to the public and begun alerting customers that could potentially be impacted,” a TeenSafe spokesperson told ZDNet. The company promised to offer further information as its investigation progresses.

Data in plaintext form

Particularly concerning, however, is the claim that the exposed data had been stored in plaintext form. This includes parents’ email addresses, as well as children’s Apple ID email addresses — some associated with their high schools — and associated passwords.

As noted by the news outlet, TeenSafe requires that two-factor authentication be turned off, so a hacker with the relevant data would have little trouble accessing an exposed Apple ID account.

It may offer little comfort to those affected, but none of the records on the leaky server included any location data linked to parents or children.

To confirm the authenticity of the data obtained by the security researcher, ZDNet used iMessage to contact 12 parents whose details showed up on the server. While not everyone responded, those who did confirmed that the emails and passwords shown on the database were in fact genuine.

If you use the service and are yet to hear from TeenSafe, you’ll be wise to change any associated passwords as a precautionary measure.

While services like TeenSafe may provide comfort for parents anxious about their children’s online behavior, they also face criticism from privacy advocates.

TeenSafe suggests that a child doesn’t even need to know that they’re bing monitored by a parent. “Every parent’s situation is unique and only a parent can decide whether to inform their teen of their intent to use the [service]” the company says on its website.

In light of this recent leak, parents who use the service secretly will now have to either tell their child, or find another way to get them to change their Apple ID password.

Topics

Contributing Editor

Not so many moons ago, Trevor moved from one tea-loving island nation that drives on the left (Britain) to another (Japan)…

Mobile

Is your child safe from inappropriate apps on Apple App Store? A report says no

App Store screenshot on iPhone.

Apps aimed at children have been available since the inception of the App Store. However, not all apps created for minors are safe to use. This is the main finding of a new survey conducted by two child safety organizations. The report presents the results of a 24-hour research study in which 800 apps were reviewed, and the findings are concerning.

The Heat Initiative and ParentsTogether Action study found that Apple's App Store is a mass distributor of risky and inappropriate apps to children. Many apps have features that put children at risk of sexual abuse and exploitation, low self-esteem and poor body image, disordered eating, exposure to sexual and violent content, and more. Apple claims that the App Store is a safe place for children, but the study found that Apple takes no legal responsibility for the veracity of age ratings.

Mobile

Tips to keep your smartphone just as safe as a government official’s

Safety check on iPhone

It’s the holiday season, and that means an onslaught of bad actors trying to ensnare digital shoppers into their scams. Even Google had to publish a self-pat-on-the-back alert covering celebrity scams, fake invoice traps, and digital extortion. Of course, Big G took the opportunity to regale the virtues of Gmail’s anti-spam tricks.

The government, however, is dead serious about the threats, which extend well into the domain of intricate cyberattacks and telecom breaches targeting high-ranking officials and senior politicians. To that end, the Cybersecurity and Infrastructure Security Agency (CISA) has issued a set of guidelines to protect smartphones.

Mobile

I’m obsessed with this app that turned my iPhone into a retro iPod

The My Classic app on an iPhone 16 showing the iPod interface.

As great as modern technology is, sometimes it can be a bit overwhelming. Smartphones today are capable of virtually endless tasks and are light-years better than mobile gadgets from a decade or two ago. Still, it's hard not to have some nostalgia for "retro" devices like the Palm Pilot, the first Motorola Razr, or your trusty old iPod.

While doomscrolling X the other night, I saw that Quinn Nelson of Snazzy Labs had posted a short video about an iPhone app called "My Classic - Retro Console" that promises to turn your iPhone into an iPod Classic. It's a very silly idea, but at a one-time price of $3, it was cheap enough that I decided to try it for myself. After living with my iPhone 16 transformed into an old-school iPod for about a day, I'm absolutely obsessed with it.
Using my iPhone like an iPod in 2024