Categories: GadgetsUncategorized

This Android application can divulge your personal message, email address

More than a dozen popular Android applications downloaded by more than 140 million people reportedly found leaked data.
Exposed data including username, email address, and many other personal information.
Leaks have been detected by Cybersecurity researchers in CyberNews and they have released the same report.
Some of the applications mentioned in this report are Universal TV Remote Control, Remote for Roku: Codematics, Hybrid Warrior: Dungeon of the Overlord and find my children: Trackers of Children’s Mobile Location.
The leakage is possible because of the Firebase database database configuration error which is often managed by developers without security training, which makes it an easy target for cybercriminal.
Firebase is a cellular application development platform that offers features such as hosting, analytics and real-time cloud storage to developers.
The platform was acquired by Google in 2014 and since then is one of the most popular data storage solutions for Android applications.
This research reveals that because of a bad configuration on anyone’s Firebase who knows the right URL can access the real-time database and user information from this popular application without any authentication.
According to researcher Martynas Bunaris, the application not only leaks user data, but also their personal message.
For inquiry, the researchers analyzed 1,100 the most popular applications in 55 different categories on the Google Play Store.
For metrics of popularity, researchers use the collection ‘top {category’ provided by the Play Store.
CyberNews claims that their researchers report their findings to Google and ask them to help developers but technology giants ignore all questions.
Even though the researchers only see the application on the Play Store, the possibility of iOS applications might be affected by this configuration error because Firebase is the agnostic platform.
“If you are an application developer, always make sure to follow the official real-time Firebase Database Security Guidelines provided by Google,” Suggest CyberNews researchers.

news2in

Share
Published by
news2in

Recent Posts

44 ordered to attack the procession

Ludhiana: The police have submitted FIR to four identified and at least 40 unknown attackers…

3 years ago

Punjab: Police Reject conspiracy theory in the case of Deep Sidhu

Sonīpat / Ludhiana / Ambala: Actor Punjabi - Activist Activist Deep Sidhu, who died in…

3 years ago

Punjab: Hidden Strength Working Behind PM Narendra Modi, Arvind Kejriwal, said Rahul Gandhi

PATIALA / MANSA / BARNALA: Attacking Prime Minister Narendra Modi and AAP National Convener Kejriawal,…

3 years ago

BJP made AAP to endanger the Congress, said Ajay

Jalandhar: BJP and AAM AAM AADMI parties are one party, Secretary General of the Ajay…

3 years ago

Our job is to make Punjab No. 1 State: Meenakshi Lekhi

Ludhiana: Minister of Union Culture Meenakshi Lekhi while campaigning to support the BJP candidate from…

3 years ago

Feb 20 is an opportunity to change the destiny of Punjab and his children: Bhagwant Mann

Machhiwara (Ludhiana): AAM AAM AADMI Party (AAP) Head of Punjab Candidate and Members of Parliament…

3 years ago