An “anonymous” social networking application that lets users share secrets and intimate confessions reportedly left hundreds of millions of user records exposed online.

Cybersecurity experts were able to access up to 900 million records linked to the software, called Whisper, that were being stored in a database without adequate password protection. That’s according to The Washington Post, which reported the trove of sensitive data dated back to 2012.