Thousands of Apple ID accounts are leaked because an application's server has data leaks
Two of TeenSafe's servers, the monitoring application allows parents to monitor their activity on Android and iOS devices, stored on the Amazon cloud service with security issues.
Specifically, these two servers are not protected by passwords, meaning thousands of accounts of parents and children use TeenSafe risk of information disclosure.
This serious security vulnerability was discovered by security vendor Robert Wiggins. Although one of the servers is only for processing test data, another server contains 10,200 data records including the email address of the parent associated with an account / Apple ID address, device name. , the child's UDID number and password to access the Apple ID are not encrypted.
Importantly, TeenSafe requires users to turn off two-factor authentication for their child's Apple ID account so that parents have the right to monitor the phone without consent. This means hackers can use leaked information to break into accounts and collect data.
Immediately after receiving a warning about the vulnerability, TeenSafe closed one of the servers. Customers were also informed about the risks affected by the company.
See more:
- Detecting an extremely dangerous vulnerability on nearly 16,000 iOS applications
- Windows 10 April Update 2018 Update makes taskbar invisible
- Virtual Assistant Google Assistant will support Vietnamese at the end of the year
You should read it
- Apple released a patch to fix security holes on Mac OS X
- 9 apps that scam and steal users' Facebook accounts
- Apple is the most complete password protection website
- Apple ID accounts are used by Chinese hackers to steal money
- How to delete an Apple ID account
- Differentiate Apple ID and iCloud
- How to add and delete Email accounts on Mac, iPhone and iPad
- Apple promises to upgrade security for iCloud in the next 2 weeks
May be interested
- Vietnamese security engineer was awarded by Yahoo for discovering a serious vulnerability on Yahoo Messengerinformation from vietnam network security joint stock company (vsec), nguyen van luc, a security engineer of vsec has discovered a security vulnerability on the new yahoo messenger version and was awarded by yahoo.
- OneDrive is the most used cloud storage service in the enterprisespiceworks survey of 544 businesses in north america and europe shows that the majority of businesses using onedrive make cloud storage solutions.
- Here are 7 Google YouTube apps and their effectsroom when you get lost in the youtube world because there are so many different versions with different functions.
- Which smartphone is the most durable?recently, tom's guide site has purchased all the latest, most popular smartphones in the us for durability testing by drop drop method. this smartphone's durability test costs more than $ 18,000.
- Accumulated 1,000,000V directly to the device, Nokia 'brick' fired lightning, self-dialed as a ghostdespite being charged up to 1 million volt directly into the machine, firing electricity, but the legendary phone is still not scratching, even comfortable as usual.
- Type '@' to insert new recipients anywhere in Gmailwith the 'mention' feature, you can insert anyone's email address anywhere without having to move it to the recipient address bar by entering the @ symbol later. that is the name of that person.