Thousands of Apple ID accounts are leaked because an application's server has data leaks
Two of TeenSafe's servers, the monitoring application allows parents to monitor their activity on Android and iOS devices, stored on the Amazon cloud service with security issues.
Specifically, these two servers are not protected by passwords, meaning thousands of accounts of parents and children use TeenSafe risk of information disclosure.
This serious security vulnerability was discovered by security vendor Robert Wiggins. Although one of the servers is only for processing test data, another server contains 10,200 data records including the email address of the parent associated with an account / Apple ID address, device name. , the child's UDID number and password to access the Apple ID are not encrypted.
Importantly, TeenSafe requires users to turn off two-factor authentication for their child's Apple ID account so that parents have the right to monitor the phone without consent. This means hackers can use leaked information to break into accounts and collect data.
Immediately after receiving a warning about the vulnerability, TeenSafe closed one of the servers. Customers were also informed about the risks affected by the company.
See more:
- Detecting an extremely dangerous vulnerability on nearly 16,000 iOS applications
- Windows 10 April Update 2018 Update makes taskbar invisible
- Virtual Assistant Google Assistant will support Vietnamese at the end of the year
You should read it
- Instructions for setting up an Apple ID security key
- How to set up privacy for Apple Music accounts
- Apple released a patch to fix security holes on Mac OS X
- 9 apps that scam and steal users' Facebook accounts
- Apple is the most complete password protection website
- Apple ID accounts are used by Chinese hackers to steal money
- How to delete an Apple ID account
- Differentiate Apple ID and iCloud
- How to add and delete Email accounts on Mac, iPhone and iPad
- Apple promises to upgrade security for iCloud in the next 2 weeks
- Security experts discovered that the line appropriated bank accounts, Facebook, Gmail ... very large in Vietnam, you can also be a victim
- Apple blocked 25 vulnerabilities in Mac OS X