Niantic, Inc. the makers of Pokemon Go had to make emergency fixes to the game because the app gave the company a huge level of access into players’ personal lives. iPhone users who signed into the game using their Google account allowed Niantic the opportunity to read your emails. According to CNN, the company gets full access to your Google account. They state further that full access means that Pokemon Go can see and modify all the information in your Google Account.
Niantic released a statement which indicated that “We recently discovered that the Pokémon GO account creation process on iOS erroneously requests full access permission for the user’s Google account.” The company stressed that Pokemon Go only needs basic profile information just a User ID and email address. According to the Epoch Times, Google verified with them that neither Pokemon Go, nor Niantic has received any other information. The company is working on a client-side fix so that permission is only requested for basic Google profile information.
“Google will soon reduce Pokémon GO’s permission to only the basic profile data that Pokémon GO needs, and users do not need to take any actions themselves,” the company said. The company released an update for the game on July 12, 2016. In the new patch it fixes the Google account issue, also it prevents Trainers from login over and over when the game closes or crash.
The coding error was first discovered by Adam Reeve, a computer security expert at the cybersecurity firm RedOwl. On Monday, Reeve wrote in a blog post that,“This is probably just the result of epic carelessness.” He further stated that“I don’t know how well they will guard this awesome new power they’ve granted themselves… I really wish I could play, it looks like great fun, but there’s no way it’s worth the risk.”