Credit Karma bug exposes account info to other users

Credit Karma users were able to see other people's account information thanks to a "technical issue," a company representative said Wednesday. After logging in, some users were shown other people's credit reports, including personal information such as names and addresses, TechCrunch earlier reported. 

Several users took to Reddit and Twitter to share their experiences of being shown someone else's information. 

Credit Karma is a site that monitors users' credit and lets customers check their credit scores for free. Users can also access credit scores from agencies like Equifax, which last month agreed to pay at least $575 million as part of a settlement over its 2017 data breach.

A Credit Karma representative said the technical issue, which affected less than 0.5% of its users, is believed to have been fixed. No Social Security numbers or individual account numbers were exposed, the representative added. 

A "very limited number of people" had access to other people's credit scores and credit factors, and the company is investigating around 1,000 to 2,000 instances where personal information may have been exposed. If that's the case, Credit Karma will notify affected users as soon as possible, the representative said. 

If anyone sees information that isn't theirs, Credit Karma asks that they reach out to the company immediately. 

"We take security very seriously, and we apologize for the issue and the concern this has caused our members," the representative said in a statement.

Spokeswoman Emily Donohue told TechCrunch there is "no evidence of a data breach." 

Watch this: Equifax breach: Find out if you can claim part of the $700 million

01:33

Originally published Aug. 14.
Update, Aug. 15: Adds comment from Credit Karma.