Friday, November 15, 2024

Android warning for apps that “publish private videos and photos” 100 million downloads

Date:

ANDROID users are encouraged to avoid dangerous apps that have been downloaded 100 million times on the Google Play store.

US cybersecurity enthusiasts warn in a new report that the Go SMS Pro messaging app exposes users’ private photos and videos due to a serious security flaw.

3

The messaging app, downloaded over 100 million times on the Google Play store, publishes your private videos and photosCredit: Alamy

The bug was reported by researchers to the creator of the app in August, and researchers imposed a 90-day deadline to fix the issue.

After that date passed without a reply, a team from Chicago-based cyber firm Trustwave shared the results online.

so Blog post For more details on last week’s findings, researchers warned that Go SMS Pro publishes media files sent between users of the app.

“This exposure includes private voice messages, video messages, and photos,” they write.

According to researchers, the Go SMS Pro app should not be trusted

3

According to researchers, the Go SMS Pro app should not be trustedCredit: Google Play

“Confidential media shared between users of this messenger app is at risk of being compromised by unauthenticated attackers or curious users.”

According to Trustwave, this flaw was discovered in Go SMS Pro version 7.91, but older and future versions are also believed to be affected.

Like any other messaging app, GoSMS Pro, one of the most popular messaging apps on the Google Play store, allows users to send files to each other.

However, unlike other apps, problems occur when a Go SMS Pro user sends something to another Android user who does not have this app installed.

Android users are being asked to remove the Go SMS Pro app

3

Android users are being asked to remove the Go SMS Pro appCredit: Alamy

When this happens, Go SMS Pro creates a web page that is shared with the recipient via SMS, allowing the recipient to view the file.

However, Trustwave researchers have found that these web addresses are easy to guess, especially because they are created in sequence.

All a hacker needs to access a file is to anticipate the URL attached to the file and view the file without permission.

“Malicious users may have access to media files sent through this service and media files sent in the future,” said Trustwave.

How to protect yourself from hackers

  • Protect your devices and networks by keeping them up to date. Use the latest supported version, use antivirus, and scan regularly to protect against known malware threats.
  • Use multi-factor authentication to reduce the impact of password compromise.
  • Tell staff how to report suspected phishing emails, give them confidence, and investigate reports quickly and thoroughly.
  • Set up security monitoring to collect the data needed to analyze network intrusions
  • Prevents and detects lateral movement in your organization’s network.

“This obviously affects the confidentiality of the media content sent through this application.”

According to Trustwave, the elusive maker of the app hasn’t responded to multiple emails sent by researchers since August 18.

As a result, vulnerabilities still exist and pose a risk to users. The app is still published on the Google Play store.

Trustwave urged app users not to send media files or media files containing sensitive data that they want to keep private until the issue is resolved.

WhatsApp “Dark Mode” Finally Launches on iPhone and Android-How to Get

n Other news, Furious users claim that WhatsApp updates “drain the battery” on Android phones.

The Americans mysteriously received text from “dead husbands, companions, parents” due to a strange national phone bug.

Also, if you have an iPhone, you’ll need to update to the new iOS 13.2.2 to increase phone signal and app load times.

Are you worried about cyber criminals? Let us know in the comments …


We pay for your story! Is there a story about the Sun Online Tech & Science team? Please email us at [email protected]


Mortimer Rodgers
Mortimer Rodgers
Professional bacon fanatic. Explorer. Avid pop culture expert. Introvert. Amateur web evangelist.

Share post:

Popular

More like this
Related

Practice Acrylic Nail Techniques Without Needing a Fake Hand

When you're starting your journey with acrylic nails, practice...

Inside the World of Common Snapping Turtles: Behavior and Habitat

The common snapping turtle (Chelydra serpentina) is one of...

How to Use Video Marketing to Promote B2C Products?

Video marketing has emerged as a powerful tool for...

Adapting to Change: The Future for Leopard Tortoise Environments

Leopard tortoises, known for their striking spotted shells and...