Cyber security firm VPNMentor says that a database holding a massive trove of private SMS text messages were left unsecured and unencrypted, leaving millions of Americans at risk of having their messages exposed online.

VPNM said in a blog post that a Texas-based messaging firm named TrueDialog is responsible for the leak. Your medical information, plus passwords to sites like Google and Facebook could have been exposed.

TrueDialog says it’s taken the logs down. So why does TrueDialog have your info? The company sends marketing material to customers via text message.

Are you surprised by this massive data leak? Have you ever had your personal information stolen?

More about: