SecurityBrief New Zealand - Technology news for CISOs & cybersecurity decision-makers
Story image

Fitness apps face scrutiny over data security risks

Yesterday

With many turning to digital services to achieve New Year fitness goals without realising the risks to their data security, Kaspersky has published advice on how people can protect themselves against attempts by cybercriminals to breach health data, payment details and even progress pictures posted on social media.

YouGov recently revealed that online personal training has become wildly popular across multiple social media platforms, including Instagram and TikTok. As part of its advice, Kaspersky advises users to verify trainers, avoid unverified links and oversharing of personal information, as well as activating antivirus software to ensure a safe environment for their fitness journeys.

According to Kaspersky, with the rise of online personal training facilitated by platforms like Instagram and TikTok, many users are engaging with trainers in this virtual environment without fully appreciating the security vulnerabilities involved. The company has responded by issuing advice to ensure fitness enthusiasts can protect their personal information while participating in these digital fitness programmes.

Online personal training is rapidly gaining popularity, with market predictions indicating a compound annual growth rate of 29.6 percent until 2033. Personal trainers, now social media influencers, put out enticing content that spans workout demos to transformation stories. However, engaging with unverified trainers and apps can lead to the unwarranted sharing of sensitive personal information, including health data and progress images.

Such exchanges often occur informally through social media or messaging platforms, lacking proper contracts or agreements, which heightens the risk of data misuse, Kaspersky says. Common concerns involve third-party apps used for scheduling and communication, unauthorized use of progress photos, and imitation risks if a trainer's social media account is compromised.

Francesco Tius, Corporate Communications Manager for the United Kingdom, Ireland, Benelux, and North America at Kaspersky, said, "Online personal training programs may not be inherently unsafe; however, users often overlook simple precautions that could save them from significant trouble.

"Before dismissing these programs altogether, take proactive steps to protect yourself," Tius said.

Tius recommends several measures to aid security, starting with verifying a trainer's credentials through reputable fitness organisations. Checking for verified profiles, reading client testimonials, and ensuring direct communication via official websites or trusted platforms are advised steps.

Tius said potential users should steer clear of clicking on links from unsolicited messages. Websites with secure HTTPS tags in the URL should be prioritised when engaging with online services. Also, sharing of personal information should be limited to essential data only, employing secure and encrypted communication platforms where necessary.

Tius emphasised the merits of using antivirus software, such as Kaspersky Premium, which offers real-time protection against malicious sites, phishing attempts, and data-skimming threats. "These precautions significantly strengthen your security, enabling you to enjoy the benefits of virtual fitness programs with greater peace of mind and reduced exposure to potential data breaches," he stated.

Follow us on:
Follow us on LinkedIn Follow us on X
Share on:
Share on LinkedIn Share on X