Earlier in the week, security researcher Daniel Wood disclosed that the Starbucks app stores user names, email addresses, passwords and even geolocation information in unencrypted, clear text. Starbucks executives confirmed that app users' information could be visible to anyone with access to the phone if it was connected to a computer. So, if a user's phone was stolen, that information could be accessed by the thief.
Starbucks CIO Curt Garner said in a letter to customers that there is no indication that any customer data has been compromised. The company said it will soon roll out an update for its app to make it more secure, though it said the app for Google's (GOOG) Android operating system does not contain the vulnerability.
According to ComputerWorld, the Starbucks app is the most popular mobile-payment app in the United States. In New York, I'm Brittany Umar for TheStreet.
Written by Brittany Umar in New York.