Unprotected Database Exposes Over 31 Million Golf User Records
A massive data breach has exposed 31,602,260 records connected to users of TrackMan, a leading sports technology company known for its golf simulators and sports analytics tools. The compromised database, which was neither password-protected nor encrypted, contained sensitive information, including usernames, email addresses, device information, IP addresses, and security tokens. The total size of the leaked data reached 110 terabytes.
The breach was discovered by a researcher who quickly sent a responsible disclosure notice, resulting in the public access to the database being restricted the same day. However, it is unclear how long the information had been exposed and whether any other parties accessed the data before it was secured. TrackMan has not responded to inquiries about the breach, and there is no confirmation if the database was managed internally or by a third-party contractor. An internal forensic audit would be required to determine if there were any signs of unauthorized access or suspicious activity.
TrackMan is a major player in sports analytics, using advanced technologies like Doppler radar and imaging systems to provide data on key performance metrics such as ball speed, club movement, and player stats. Their technology is widely used in sports training, broadcasting, and performance improvement, and the exposed data included highly detailed session reports. This breach raises concerns over the protection of personal and performance-related data of millions of TrackMan’s customers, many of whom use its subscription services and physical devices for sports training and analysis.
This Trackman Data Breach underscores the critical need for robust data security measures, especially for companies handling sensitive user information.