Security attack

Millions of online shoppers could be at risk from hardcoded Shopify tokens

Millions of Android e-commerce app users risk having their sensitive data accessed by scammers, researchers have claimed.

A recent report from CloudSEK’s BeVigil says researchers discovered 21 e-commerce apps with 22 hard-coded Shopify API keys/tokens that could expose the personally identifiable information (PII) of around four million users.