Skip to main content

Minneapolis parking app experienced data breach in March

No credit card information was accessed in the breach.

An app that can be used to pay for parking meters in Minneapolis experienced a data breach in March, MPLS Parking app said in an email to users Wednesday.

"In March, ParkMobile, the developer of the MPLS Parking app, became aware of a cybersecurity incident linked to a vulnerability in a third-party software which we use," MPLS Parking said. 

MPLS Parking "immediately launched" an investigation with a "leading cybersecurity firm" to address the incident and eliminated the third-party vulnerability. 

The email was used to update users on the investigation's findings, with MPLS Parking saying no credit card information and no data related to a user's parking transaction history was accessed. 

MPLS Parking says only "basic user information" was access in the breach, including license plate numbers, email addresses, phone numbers and vehicle nicknames (if provided by the user). A "small percentage of users" also had their mailing addresses affected. 

Encrypted passwords were accessed but not the keys required to read said passwords, with MPLS Parking noting it does not collect Social Security numbers, driver's license numbers, or dates of birth. 

Users can change their passwords in the settings section of the app or online here, with the email recommending that people use a unique password for every different online account. 

"We continue to maintain our security and monitor our systems," the email said, noting they've notified the proper law enforcement authorities. "As the largest parking app in the U.S., the trust of our users is our top priority. Please rest assured we take seriously our responsibility to safeguard the security of our users’ information."

In a statement to Bring Me The News, the City of Minneapolis said: 

"ParkMobile is contracted with the City to provide an MPLS Parking branded version of their mobile payment app to customers for making parking meter payments. There was no breach of any City networks or the data the City receives for payments. The profile information that was exposed in the breach was contained within ParkMobile systems that are not integrated with any City systems. The City is coordinating with ParkMobile to ensure proper legal notifications are made to affected users of the app."

There have been about 430,000 total downloads of the MPLS Parking app but the city typically sees about 100,000 unique users in an average month, city spokesperson Sarah McKenzie told BMTN. 

The breach was not specific to the MPLS Parking app, but impacted all ParkMobile app accounts including the one Minneapolis uses. 

Sign up: Subscribe to our BREAKING NEWS newsletters

Next Up

Xcel Energy Center

NHL announces make-up dates for Wild postponements

The Wild will play 40 games in the final 77 days of the regular season.

the mayo clinic - edit

Group says Mayo should be 'severely punished' over research puppy's death

The puppy died two days after undergoing a procedure at a Mayo research facility.

FLickr - minneapolis police - Tony Webster - Feb 2020 - crop

Charges: Man kidnapped woman, sexually assaulted her at gunpoint

The suspect faces three separate felony charges.

mn state capitol january 17 2021

St. Cloud 'Boogaloo Boi' who discussed attack on MN Capitol gets 2 years

He was charged with illegally possessing a machine gun.

Chris Smith

Gophers add All-Ivy League D-tackle from Harvard

Chris Smith will be eligible immediately as a graduate transfer.

school bus

High school basketball team returns from game to find bus driver dead

Members of the girls team returned to the bus to find the driver unresponsive.

covid-19 testing site sign

Minnesota AG sues COVID testing site, alleging it sent false results

Sometimes the company didn't send people their results at all, the lawsuit alleges.

optum headquarters chad davis wikimedia commons

UnitedHealth Group says it made $287B last year, $24B of it profit

The corporation's Optum business represented a significant chunk of that total.

covid

Omicron may have already peaked in Minnesota

Reported cases lag what's happening in real time, so the newly reported cases over the next week or so will still be very high.

MnDot snow plow cam I-35 12-10-21

MnDOT reveals 50 snowplow name finalists

Voting is open through Wednesday, Jan. 26.

gov tim walz

Walz's $2.7B infrastructure plan includes $940M for climate projects

Projects will help Minnesota prevent or adapt to climate change and mitigate its impacts, the governor says.

Related

Dunn brothers

Data breach impacts card users at Dunn Bros., Sebastian Joe's

A Minnesota company that provides point-of-sale services has confirmed a breach.

The Uber data breach: What you need to know

Personal information of 57 million Uber users was accessed.

Data breach at DoorDash compromises nearly 5 million accounts

The food delivery service says some users should reset their passwords.

Payment information accessed in Delta data breach

Delta says a 3rd party company was breached in the fall.

Children's Minnesota - Minneapolis campus

Thousands of MN hospital patients' information possibly exposed in data breach

A vendor four Minnesota hospitals use for their foundations experienced a ransomware attack in July.