MINNEAPOLIS — The company that developed the MPLS Parking app warned users Wednesday of a data breach that exposed information like license plate numbers, email addresses and phone numbers.
ParkMobile said it found out about the breach in March, saying it was "linked to a vulnerability in a third-party software which we use." It said that vulnerability is now eliminated.
The company said it worked with a cybersecurity firm to address the situation and notified law enforcement.
ParkMobile emphasized that users' credit card information had not been accessed. Neither was "data related to a user’s parking transaction history."
It said the accessed data includes license plate numbers, email addresses, phone numbers, and vehicle nicknames if provided. It said in a "small percentage of cases," mailing addresses were also accessed.
Encrypted passwords were accessed, ParkMobile said, but not the "encryption keys required to read them." The company said users can change their passwords out of an abundance of caution if they want, but said that information is protected through various technologies.
The MPLS Parking app does not collect social security numbers, driver's license numbers, or dates of birth.
