It looks like Citi doesn’t just do a crappy job of protecting customer info in the mail. The bank admitted yesterday that its Citi Mobile iPhone app was storing sensitive data in a hidden file on users’ phones and possibly their computers.
Among the data included in this file are account numbers, access codes and bill payments. According to Citi, users who hooked up their iPhones to computers might have also unwittingly copied that info to the PC.
The bank claims that no one’s data has been breached, but that users should update to the latest version available now from the App Store. This should delete the file from your device.