Update: Security Notification - March 2021

UPDATE: April 15, 2021

This notice applies to users of the ParkMobile app and city/operator branded white-label apps.*

As we shared in our security notification on March 26, we became aware of a cybersecurity incident in March linked to a vulnerability in a third-party software that we use. In response, we immediately launched an investigation with the assistance of a leading cybersecurity firm to address the incident. We quickly eliminated the third-party vulnerability, and we continue to maintain our security and monitor our systems. Out of an abundance of caution, we also notified the appropriate law enforcement authorities.

We recently concluded our investigation and are now updating our users of the findings. Below are the key points about the incident.

  1. The investigation confirmed that no credit card information was accessed.
  2. No data related to a user’s parking transaction history was accessed.
  3. Only basic user information was accessed. This includes license plate numbers, as well as email addresses, phone numbers, and vehicle nicknames, if provided by the user. In a small percentage of cases, mailing addresses were also affected.
  4. Encrypted passwords were accessed, but not the encryption keys required to read them. We protect user passwords by encrypting them with advanced hashing and salting technologies.
  5. We do not collect Social Security numbers, driver’s license numbers, or dates of birth.

We take extensive measures to protect user passwords. However, as an added precaution, users can change their password in the “Settings” section of the ParkMobile app or on the web by clicking this link. We recommend always using unique passwords for different online accounts.

Click here for step-by-step instructions on how to change user passwords.

As the largest parking app in the U.S., the trust of our users is our top priority. Please rest assured we take seriously our responsibility to safeguard the security of our users’ information.

*City/operator branded white-label apps include Go Mobile PGH, Park Columbus, meterUp, MPLS Parking, Park Houston, ParkLouie, MKE Park, FW Park, Park It Charlotte, ParkNYC, 717 Parking, Park 915, and Premier Parking.

 

Previous Notification from April 13, 2021

In keeping with our commitment to transparency, we want to share an update on the cybersecurity incident we announced last month.

Our investigation concluded that encrypted passwords, but not the encryption keys needed to read them, were accessed. While we protect user passwords by encrypting them with advanced hashing and salting technologies, as an added precaution, users may consider changing their passwords in the "Settings" section of the ParkMobile app or by clicking this link.

Our investigation has confirmed that basic user information – license plate numbers and, if provided by the user, email addresses and/or phone numbers, and vehicle nicknames – was accessed. In a small percentage of cases, mailing addresses were affected. No credit cards or parking transaction history were accessed, and we do not collect Social Security numbers, driver’s license numbers, or dates of birth.

Please rest assured we take seriously our responsibility to safeguard the security of our users’ information and appreciate your continued trust.

 

Previous Notification from March 26, 2021

We recently became aware of a cybersecurity incident linked to a vulnerability in a third-party software that we use. In response, we immediately launched an investigation with the assistance of a leading cybersecurity firm to address the incident. Out of an abundance of caution, we have also notified the appropriate law enforcement authorities.

The investigation is ongoing, and we are limited in the details we can provide at this time. Our investigation indicates that no sensitive data or Payment Card Information, which we encrypt, was affected. Meanwhile, we have taken additional precautionary steps since learning of the incident, including eliminating the third-party vulnerability, maintaining our security, and continuing to monitor our systems.

We take seriously our responsibility to safeguard the security of our customers’ information. We will update this page if any new information is determined.

Was this article helpful?
48 out of 149 found this helpful
Have more questions? Submit a request

Comments

0 comments

Article is closed for comments.