More than 2,000 mobile applications with millions of downloads were leaking user data, InfoSecurity reports. The leak was attributed to a misconfiguration of backend Firebase cloud databases, per a study conducted by security vendor Check Point. Two of the apps included a South American e-commerce app with more than 10 million downloads that leaked API gateway credentials and API keys, and a logo design app, also with over 10 million downloads, that leaked 130,000 usernames, emails and passwords.
17 March 2022
Misconfigured cloud databases responsible for data leak from popular apps
Related stories
23andMe fined 2.31M GBP after UK, Canada data security probe
EU reaches provisional agreement to speed up cross-border GDPR enforcement
EU lawmakers announce deal on cross-border GDPR enforcement procedures
US officials question 23andMe's ability to navigate data protection during bankruptcy
Ontario's IPC works toward balancing youth safeguards, empowerment
