Fitbit, Other Fitness Trackers Leak Personal Data
Fitness trackers are not secure at all, claim researchers in a new study. Of eight devices tested, only one offers owners a modicum of protection. Wearables were found to share location data and leave personal fitness data open to pilfering from ne’er-do-wells. The study shines light on a new security angle to consider when strapping on wearables.
Compiled by Citizen Lab and the Munk School of Global Affairs, the study, entitled “Every Step You Fake: A Comparative Analysis of Fitness Tracker Privacy and Security,” was published by Canadian nonprofit Open Effect. It looked at several popular wearables, including the Apple Watch, the Basis Peak, the Fitbit Charge HR, Garmin’s Vivosmart, the Jawbone Up 2, the Mio Fuse, the Withings Pulse O2, and the Xiaomi Mi Band. The researchers targeted the devices’ Bluetooth radios to see what they could discover.
The authors wrote:
In the course of our technical investigations into transmission security, data integrity, and Bluetooth privacy, we discovered several issues that confirm concerns about the potential uses of fitness tracking data beyond the typical case of a user monitoring their own personal wellness.