{"id":225455,"date":"2026-03-19T18:13:00","date_gmt":"2026-03-19T22:13:00","guid":{"rendered":"https:\/\/news-you-need.com\/index.php\/2026\/03\/19\/aura-breach-and-ai-companion-app-flaws-sharpen-privacy-fears\/"},"modified":"2026-03-19T18:15:16","modified_gmt":"2026-03-19T22:15:16","slug":"aura-breach-and-ai-companion-app-flaws-sharpen-privacy-fears","status":"publish","type":"post","link":"https:\/\/news-you-need.com\/index.php\/2026\/03\/19\/aura-breach-and-ai-companion-app-flaws-sharpen-privacy-fears\/","title":{"rendered":"Aura breach and AI companion app flaws sharpen privacy fears"},"content":{"rendered":"<p><a href=\"https:\/\/www.biometricupdate.com\/202603\/aura-breach-and-ai-companion-app-flaws-sharpen-privacy-fears\">Aura breach and AI companion app flaws sharpen privacy fears<\/a><\/p>\n<p><a href=\"https:\/\/www.biometricupdate.com\/202603\/aura-breach-and-ai-companion-app-flaws-sharpen-privacy-fears\">https:\/\/www.biometricupdate.com\/202603\/aura-breach-and-ai-companion-app-flaws-sharpen-privacy-fears<\/a><\/p>\n<p>Publish Date: <a href=\"publish_date]\">2026-03-19 18:13:00<\/a><\/p>\n<p>Source Domain: <a href=\"www.biometricupdate.com\">www.biometricupdate.com<\/a><\/p>\n<p>A new security report on AI girlfriend and companion apps is drawing added attention because it arrives just as identity protection company Aura is dealing with its own data exposure incident, underscoring the broader risk of companies collecting intimate user information and failing to fully protect it.<\/p>\n<p>Aura said an unauthorized party accessed about 900,000 records after a targeted phone phishing attack on an employee, while the companion app report says 17 popular Android apps with a combined 150 million plus installs contain 14 critical flaws and 311 high severity issues, including vulnerabilities that could expose users\u2019 erotic chat histories.<\/p>\n<p>According to the report, published by mobile application security company Oversecured, the problem is not simply that these apps are popular, but that they are built around some of the most sensitive disclosures users make anywhere online.<\/p>\n<p>Oversecured says the apps it examined include products explicitly marketed as AI girlfriends, AI boyfriends, dating simulators, and roleplay platforms, while several others present themselves more broadly as character or chat apps but still host large volumes of romantic and sexual roleplay.<\/p>\n<p>The report says users disclose explicit sexual content, relationship problems, sexual orientation, suicidal thoughts, and domestic conflicts, and that these conversations are often stored server-side and in some cases cached locally on users\u2019 devices.<\/p>\n<p>Oversecured says ten of the 17 apps it reviewed contained flaws that create a path to users\u2019 conversation histories, and six of those apps had critical vulnerabilities specifically capable of exposing chat data.<\/p>\n<p>Three of those six apps had more than 10 million downloads each, and one had more than 50 million downloads, according to the report.<\/p>\n<p>The company says the most severe findings included hardcoded cloud credentials embedded in app code, a cross-site scripting flaw that would allow code injection directly into a chat&#8230;<\/p>\n<p><a href=\"https:\/\/www.biometricupdate.com\/202603\/aura-breach-and-ai-companion-app-flaws-sharpen-privacy-fears\">Source<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>Aura breach and AI companion app flaws sharpen privacy fears https:\/\/www.biometricupdate.com\/202603\/aura-breach-and-ai-companion-app-flaws-sharpen-privacy-fears Publish Date: 2026-03-19 18:13:00&#8230;<\/p>\n","protected":false},"author":1,"featured_media":225456,"comment_status":"closed","ping_status":"","sticky":false,"template":"","format":"standard","meta":{"fifu_image_url":"https:\/\/d1sr9z1pdl3mb7.cloudfront.net\/wp-content\/uploads\/2022\/07\/06131842\/data-leak-scaled.jpg","fifu_image_alt":"","footnotes":""},"categories":[16],"tags":[30],"class_list":["post-225455","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-privacy","tag-breach"],"_links":{"self":[{"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/225455"}],"collection":[{"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/comments?post=225455"}],"version-history":[{"count":1,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/225455\/revisions"}],"predecessor-version":[{"id":225457,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/225455\/revisions\/225457"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/media\/225456"}],"wp:attachment":[{"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/media?parent=225455"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/categories?post=225455"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/news-you-need.com\/index.php\/wp-json\/wp\/v2\/tags?post=225455"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}