Jump to content

Aura: Difference between revisions

From Consumer Rights Wiki
← Older edit
VisualWikitext
m Expanded description slightly to clarify B2C meaning.
I appreciate the honesty in Troy's response to this. The added article contribution is not made with malice intent, only to note what happened and to make Troy's response more visible and avoid confusion.
 
Line 23: Line 23:
{{Main|link to the main CR Wiki article}}
{{Main|link to the main CR Wiki article}}


In March 2026, Aura experienced a data breach that exposed more than 900,000 records that contained names, e-mail addresses, IP addresses, phone numbers, physical addresses, and customer service comments.<ref>{{Cite web |last=Toulas |first=Bill |title=Aura confirms data breach exposing 900,000 marketing contacts |url=https://www.bleepingcomputer.com/news/security/aura-confirms-data-breach-exposing-900-000-marketing-contacts/ |website=BleepingComputer |date=18 Mar 2026 |access-date=27 Apr 2026 |url-status=live |archive-url=https://web.archive.org/web/20260318230519/https://www.bleepingcomputer.com/news/security/aura-confirms-data-breach-exposing-900-000-marketing-contacts/ |archive-date=18 Mar 2026}}</ref><ref>{{Cite web |author= |title=Aura Data Breach |url=https://haveibeenpwned.com/breach/Aura |website=Have I Been Pwned |date=18 March 2026 |access-date=28 Apr 2026 |url-status=live |archive-url=https://web.archive.org/web/20260321041145/https://haveibeenpwned.com/breach/Aura |archive-date=21 Mar 2026}}</ref><ref>{{Cite web |last=Arghire |first=Ionut |title=Security Firm Aura Discloses Data Breach Impacting 900,000 Records |url=https://www.securityweek.com/security-firm-aura-discloses-data-breach-impacting-900000-records/ |website=SecurityWeek |date=19 Mar 2026 |access-date=28 Apr 2026 |url-status=live |archive-url=https://web.archive.org/web/20260320045535/https://www.securityweek.com/security-firm-aura-discloses-data-breach-impacting-900000-records/ |archive-date=20 Mar 2026}}</ref>
In March 2026, Aura experienced a data breach that exposed more than 900,000 records that contained names, e-mail addresses, IP addresses, phone numbers, physical addresses, and customer service comments.<ref>{{Cite web |last=Toulas |first=Bill |title=Aura confirms data breach exposing 900,000 marketing contacts |url=https://www.bleepingcomputer.com/news/security/aura-confirms-data-breach-exposing-900-000-marketing-contacts/ |website=BleepingComputer |date=18 Mar 2026 |access-date=27 Apr 2026 |url-status=live |archive-url=https://web.archive.org/web/20260318230519/https://www.bleepingcomputer.com/news/security/aura-confirms-data-breach-exposing-900-000-marketing-contacts/ |archive-date=18 Mar 2026}}</ref><ref>{{Cite web |author= |title=Aura Data Breach |url=https://haveibeenpwned.com/breach/Aura |website=Have I Been Pwned |date=18 March 2026 |access-date=28 Apr 2026 |url-status=live |archive-url=https://web.archive.org/web/20260321041145/https://haveibeenpwned.com/breach/Aura |archive-date=21 Mar 2026}}</ref><ref>{{Cite web |last=Arghire |first=Ionut |title=Security Firm Aura Discloses Data Breach Impacting 900,000 Records |url=https://www.securityweek.com/security-firm-aura-discloses-data-breach-impacting-900000-records/ |website=SecurityWeek |date=19 Mar 2026 |access-date=28 Apr 2026 |url-status=live |archive-url=https://web.archive.org/web/20260320045535/https://www.securityweek.com/security-firm-aura-discloses-data-breach-impacting-900000-records/ |archive-date=20 Mar 2026}}</ref> After the breach, the website haveibeenpwned.com continued their sponsorship with Aura<ref>{{Cite web|url=https://x.com/troyhunt/status/2048956316329431160|title=Troy Hunt on X|date=2026-04-27|work=X|author=@troyhunt|quote=We gave it a lot of thought. Ultimate conclusion was that I’ve long said we should judge orgs on their handling of a breach rather than that they had one. They handled it well (I had *a lot* of discussion with them about what “well” means), so we kept them on.}}</ref>, but removed it from the "Recommended Actions" section on the Aura entry due to company request.<ref>{{Cite web|url=https://x.com/troyhunt/status/2048957674457645168|title=Troy Hunt on X|date=2026-04-27|work=X|author=@troyhunt|quote=Oh - and yeah, they asked not to have the Aura placement on the Aura breach page, for obvious reasons}}</ref><ref>{{Cite web|url=https://haveibeenpwned.com/Breach/Aura|title=Aura Data Breach|work=Have I Been Pwned|archive-url=https://web.archive.org/web/20260318071125/https://haveibeenpwned.com/Breach/Aura|archive-date=2026-03-18|url-status=live}}</ref>


==Products==
==Products==

Latest revision as of 16:34, 17 May 2026

This article is a stub. You can help by expanding it.

A moderator needs to check the page before this notice can be removed. Visit the noticeboard or the #appeals channel in either Zulip or Discord to request removal.
More info ▼

An article may be flagged as a stub when it is missing major elements needed to make it useful to a reader. You can help by adding missing sections, verifiable sources, relevant company policies and communications, etc. to make the article more complete.

Aura
Basic information
Founded 2014
Legal Structure Private
Industry Identity theft prevention
Also known as
Official website https://www.aura.com

Aura is an American company founded by Hari Ravichandran in 2014 under the name iSubscribed.[1][2]

Consumer impact summary

[edit | edit source]

Overview of concerns that arise from the conduct towards users of the product (if applicable):

  • User Freedom
  • User Privacy
  • Business Model
  • Market Control

Add your text below this box. Once this section is complete, delete this box by clicking on it and pressing backspace.


According to users, Aura locks users out of their accounts when they cancel their membership before it runs out whilst some users state that it is hard to cancel a subscription.[3][4][5][6]

Incidents

[edit | edit source]

This is a list of all consumer-protection incidents this company is involved in. Any incidents not mentioned here can be found in the Aura category.

Data breach (March 2026)

[edit | edit source]
Main article: link to the main CR Wiki article

In March 2026, Aura experienced a data breach that exposed more than 900,000 records that contained names, e-mail addresses, IP addresses, phone numbers, physical addresses, and customer service comments.[7][8][9] After the breach, the website haveibeenpwned.com continued their sponsorship with Aura[10], but removed it from the "Recommended Actions" section on the Aura entry due to company request.[11][12]

Products

[edit | edit source]

This is a list of the company's product lines with articles on this wiki.

Add your text below this box. Once this section is complete, delete this box by clicking on it and pressing backspace.


See also

[edit | edit source]

Link to relevant theme articles or companies with similar incidents.

Add your text below this box. Once this section is complete, delete this box by clicking on it and pressing backspace.


References

[edit | edit source]
  1. "Who owns Aura?". Aura. Archived from the original on 29 Apr 2026. Retrieved 28 Apr 2026.
  2. "About Us | Aura - Digital Security". Aura. Archived from the original on 28 Mar 2026. Retrieved 28 Apr 2026.
  3. WastingTime76 (31 Oct 2024). "Identity Guard Aura - Don't do business with this company". Reddit. Archived from the original on 29 Apr 2026. Retrieved 28 Apr 2026.{{cite web}}: CS1 maint: numeric names: authors list (link)
  4. Far_Wrongdoer2219 (5 Dec 2024). "Aura vs Others". Reddit. Archived from the original on 29 Apr 2026. Retrieved 28 Apr 2026.{{cite web}}: CS1 maint: numeric names: authors list (link)
  5. TECPlayz2-0 (3 Sep 2023). "Aura - is it any good?". Reddit. Archived from the original on 24 Sep 2023.{{cite web}}: CS1 maint: numeric names: authors list (link)
  6. Defender452 (11 Apr 2023). "Aura sucks. Not only can you not cancel your Aura membership from the Android app. When you try to cancel through the website, the coloured button doesn't cancel, and it errors, making you call the phone number to cancel". Reddit. Archived from the original on 29 Apr 2026. Retrieved 28 Apr 2026.{{cite web}}: CS1 maint: numeric names: authors list (link)
  7. Toulas, Bill (18 Mar 2026). "Aura confirms data breach exposing 900,000 marketing contacts". BleepingComputer. Archived from the original on 18 Mar 2026. Retrieved 27 Apr 2026.
  8. "Aura Data Breach". Have I Been Pwned. 18 March 2026. Archived from the original on 21 Mar 2026. Retrieved 28 Apr 2026.
  9. Arghire, Ionut (19 Mar 2026). "Security Firm Aura Discloses Data Breach Impacting 900,000 Records". SecurityWeek. Archived from the original on 20 Mar 2026. Retrieved 28 Apr 2026.
  10. @troyhunt (2026-04-27). "Troy Hunt on X". X. We gave it a lot of thought. Ultimate conclusion was that I've long said we should judge orgs on their handling of a breach rather than that they had one. They handled it well (I had *a lot* of discussion with them about what "well" means), so we kept them on.
  11. @troyhunt (2026-04-27). "Troy Hunt on X". X. Oh - and yeah, they asked not to have the Aura placement on the Aura breach page, for obvious reasons
  12. "Aura Data Breach". Have I Been Pwned. Archived from the original on 2026-03-18.
Retrieved from "https://consumerrights.wiki/index.php?title=Aura&oldid=53877"