Aug 4, 2019

Sneaker marketplace StockX confirms hack affecting nearly 7 million records

A pair of Air Jordan 1 Retro shoes are seen before being packed to ship out of StockX. Photo: Jeff Kowalsky/AFP/Getty Images

Online sneaker marketplace StockX experienced a data breach that exposed millions of customers' data, revealed only after a company email asked users to reset their passwords for "system updates," TechCrunch reports.

Why it matters: Last month, StockX was valued at over $1 billion after a $110 million fundraising round. The tracker, which has helped niche shoe buyers decide whether to sell, buy or hold, has exploded among non-shoe lovers who are only interested in the gains they can make from flipping sneakers at higher prices.

An unnamed seller of the stolen data contacted TechCrunch and claimed that more than 6.8 million records were stolen from StockX in May. Details per TechCrunch:

  • The stolen data contained names, email addresses, shoe sizes, trading currency, device types and more.
  • The seller put the data up for sale for $300 in a dark web listing. One person at the time of writing had already bought the data.
  • StockX confirmed the hack to Engadget and said it has implemented "immediate infrastructure changes to mitigate and address any potential effects of the suspicious activity."

What to watch: Under GDPR guidelines, StockX could be fined as much as 4% of its global annual revenue for the violations.

Go deeper: The slow decay of sneaker culture

Editor's note: The story has been updated to reflect that TechCrunch was contacted by an unnamed seller of the stolen data (not a seller whose data has been breached).

Go deeper

Mobility data could give cities new tools to improve equity

Illustration: Sarah Grillo/Axios

As mobility data is amassed from ride-hailing, dockless bikes and e-scooters, cities need tools to responsibly track, store, and analyze it.

The big picture: With cities collecting that mobility data, in some cases as a condition for transportation companies to operate, they are facing a new challenge: how to be responsible stewards of this influx of data.

Go deeperArrowAug 14, 2019

Facebook rolls out tool to let users control data collected by outside apps

Photo: Thomas Trutschel/Photothek via Getty Images

Facebook on Tuesday introduced a new setting to let users view and control data from apps and websites that send Facebook information about user activity away from the app. Facebook is also giving users the ability to clear this information from their account if they choose to, something the company said it was working on doing last year.

Why it matters: The new tool is supposed to give users more control over how their data is shared, in light of revelations through news stories — primarily the Cambridge Analytica scandal — that other companies can access and share user data with Facebook.

Go deeperArrowAug 20, 2019

Government wants access to personal data while it pushes privacy

Illustration: Aïda Amer/Axios

Over the past two years, the U.S. government has tried to rein in how major tech companies use the personal data they've gathered on their customers. At the same time, government agencies are themselves seeking to harness those troves of data.

Why it matters: Tech platforms use personal information to target ads, whereas the government can use it to prevent and solve crimes, deliver benefits to citizens — or (illegally) target political dissent.

Go deeperArrowAug 26, 2019