More than 2,000 mobile applications with millions of downloads were leaking user data, InfoSecurity reports. The leak was attributed to a misconfiguration of backend Firebase cloud databases, per a study conducted by security vendor Check Point. Two of the apps included a South American e-commerce app with more than 10 million downloads that leaked API gateway credentials and API keys, and a logo design app, also with over 10 million downloads, that leaked 130,000 usernames, emails and passwords.
17 March 2022
Misconfigured cloud databases responsible for data leak from popular apps
Related stories
Notes from the IAPP Canada: CPS25 zeroes in on the issues that matter most
A view from DC: An updated NIST Privacy Framework
Handsets, headsets and hyperscreens: Emerging ideas for immersive experiences and the importance of governance by design
Notes from the Asia-Pacific region: India strides ahead on the digital front
New developments in global adequacy capabilities
