Wishbone, a popular teen quiz and social networking app experienced a data breach exposing more than two million email addresses and nearly 300,000 cellphone numbers, many of them from users under the age of 18.
Wishbone allows users to vote on two-answer pop-culture based polls. After voting, users can see how their friends voted. The app has become very popular, notably among teenagers and young adults, and is ranked in the top 10 most popular apps for iPhone, according to analyst firm App Annie.
Science Inc, the owner of Wishbone, confirmed the leak on Wednesday and offered an apology to users:
We value your privacy and deeply regret that this incident occurred. Maintaining the integrity of your personal information is extremely important to us. We sincerely apologize for any inconvenience this incident may have caused you. We are continuing to investigate this matter and have taken and will continue to take appropriate action to prevent future similar incidents. Please be assured that we will keep you informed of any developments in the investigation that may be of importance to you.
The ones responsible for the incident apparently accessed the information via an unprotected database and gained access to 2,326,452 full names, 2,247,314 unique email addresses, and 287,502 cellphone numbers - along with other personal data such as birth dates and gender.
Science Inc's co-founder Greg Gilman stated that the vulnerability has been fixed and that the matter would be investigated further.