Klarna was forced to shut down its app yesterday after a severe technical issue enabled users to log into other customers’ accounts and access their personal information.
The ‘buy now, pay later’ giant was hit by major technical troubles yesterday, seeing users who tried to log in be signed in to other members’ accounts seemingly at random, allowing them to edit details and access personal information.
This is understood to have included postal addresses, purchases, payment methods and even partial bank details.
Klarna has denied that any “card or bank details” were disclosed to users during the technical issues, but a number of customers took to social media to refute this.
That’s a lie, I was able to see the saved cards on the accounts you kept logging me into @AskKlarna along with their full names, addresses, mobile numbers. I screenshot and sent this to you via live chat thinking my account had been hacked and someone had changed my details
— Rhin (@rhinjayne) May 27, 2021
The Swedish payments giant, which has been fighting hard to rebuild its public image amid a growing disquiet about its services, was forced to shut down the app completely.
For a number of hours yesterday, anyone who tried to log into the app was presented with a message stating “Sorry, the Klarna app is currently down for maintenance”.
READ MORE: Klarna launches interactive ‘Mythbuster’ campaign in effort to directly address negative PR
In a statement issued by Klarna, it sought to assure customers this was not due to an attack from outside sources, but rather was a self-inflicted error which took place after a system update.
Each time I tried to log in to my @Klarna account this morning, I’m on someone else’s account? Does this also mean someone else might currently be my on account? What the hell is going on?!! @AskKlarna pic.twitter.com/hqimF2zx7S
— esra efe laborde (@esraefe) May 27, 2021
“Trust is at the very core of Klarna and banking,” it said in a statement.
“This is why we are sad and frustrated to inform you of a self-inflicted incident, that for 31 min affected not more than 9,500 of our app users. The bug led to random user data being exposed to the wrong user when accessing our user interfaces.
“It is important to note that the access to data has been entirely random and not showing any data containing card or bank details (obfuscated data was visible). Even though GDPR would classify the information visible as “non-sensitive”, for Klarna all data is important. We are taking this incident very seriously and we will work tirelessly to regain the affected consumers’ trust.”
Klarna later reduced this figure to 9500 of its users.