That COVID passport app may put your privacy at risk
Even though the world’s attention has shifted to Ukraine, the COVID-19 pandemic is still a matter of concern. Millions of people have already stood in line to get their vaccinations and were issued a certificate as proof. Tap or click here for the places you are most likely to pick up the virus.
There are several ways to keep your paper vaccination card safe, but many have opted for digital versions. This has also contributed to the uptake in digital COVID passports, adopted by several countries as internationally-recognized proof.
It’s a good idea in theory, but it presents several challenges. Read on to see how digital passport apps could cause more harm than intended.
Here’s the backstory
While some states and cities have official digital vaccination apps that contain your details, there isn’t a universally agreed-upon app. This creates a problem, as many such apps are available in the Google Play Store and Apple’s App Store.
In a report from antivirus company Symantec, many of the digital vaccine passports lack the necessary protections to safeguard personal information. There are two standards: the SMART Health Card used in the U.S. and Canada, and the Electronic Health Certificate Container Format (HCERT) used in Europe.
As Symantec points out, you only need a QR code scanner to decode the data on a digital passport as the information is unencrypted. At the very least, this information includes your name, birthdate, and vaccination status.
The company looked at 40 digital vaccine passport apps and found 27 showed signs of risky privacy or security behavior.
- More than 40% of the apps accessed external storage data on a mobile phone.
- Over 30% of the apps didn’t require a secure connection to the internet to retrieve data.
- Two apps sent unencrypted data that hackers could intercept.
While anybody with a QR code scanner can access the data, you must use a specific validation app to verify that the information is tamper-free.
Symantec explained that there are no checks and balances for these apps, as “anyone could use a fake state or medical named issuer URL with fake vaccination record data, and the validation app would blindly pass the person.”
This forecast map shows where COVID may spread 2 weeks from now
As temperatures cool, there are concerns that we can see an uptick in COVID-19 cases. Though most cities and states relaxed their policies as vaccinations increased, some tightened things up again as new variants spread.
COVID scams aren't going away - Watch out for these common ones
Vaccinations have been administered to millions of Americans, accelerating the timeline for when things will get back to relative normality. Even though states like Texas and New York are drastically relaxing measures, scammers still use the pandemic as a criminal vehicle.
Insider tech tips for scheduling your COVID-19 vaccination
These days, COVID vaccinations are highly coveted. But complex obstacles are blocking us from obtaining herd immunity. For example, each state has different rules on who can get vaccinated, where they go and how the process works.
This COVID vaccine scam is particularly nasty — signs to watch for
The COVID-19 vaccine distribution efforts are ramping up and will soon be in full swing. There are millions of Americans waiting for an opportunity to get vaccinated against the virus.
The current phase of the rollout prioritizes high-risk persons and older adults at a greater risk of severe complications from COVID. That can be frustrating for those who want to protect themselves against the virus, and the high demand for the vaccine is causing other issues, too.