It’s only been three months since the implosion of Redbox, but the company’s familiar red kiosks could become a security nightmare as they’re sold to the highest bidders. Reports show that at least one owner of a defunct DVD and Blu-ray dispenser found a way to obtain customers’ private information from an encrypted file on the machine, which contained sensitive data like personal emails and home addresses. Programmer Foone Turing cracked the encrypted files from a Redbox machine in Morganton, North Carolina, revealing a customer’s name, ZIP code, rental history, and even part of some customers’ credit card information. The code used to program the machines was vulnerable, making it easy to crack. Redbox’s parent company, Chicken Soup for the Soul, did not properly wipe the machines before selling them off, leading to concerns about privacy and security. With over 24,000 kiosks potentially at risk, it may be worth considering alternative entertainment options like Netflix. Chicken Soup for the Soul has been contacted for comment on the issue.
