Remember how Android vulnerabilities were making news every morning a few months ago? Remember how Skype stored personal data in a plaintext format and it was all left out there in your phone’s SD card storage to be accessed by anyone? Well, the vulnerability is revisited. Just that it is not Skype this time. There are a number of apps that do the same mistakes and Netflix, Foursquare and Linkedin just joined the hall of shame.
Clearly, these mobile apps are not interested in the security and privacy of their users. This is like your OS storing login password in a text file. How would that feel? The vulnerability has been discovered by viaForensics but it seems like this is becoming a trend with Android apps. There must be many more apps that do the same. It is only time before they are discovered.
The best thing about these things is that the moment they break out, fixes are released and things are better. However, if undiscovered, they just lay there.
Now, data theft is still better than password theft and the very nature of using the same login details everywhere is a huge risk for Android users of any of these services.
If you are a service oriented business, people understand that data is important for you to function properly. Their only privacy concerns is what exactly you are doing with this data and mishaps like these simply validate the paranoid people have with privacy. Companies have to start taking user data seriously and handle it with utmost care.