Researchers found that most of the apps available on Apple’s App Store leak at least one hard-coded secret.
The researchers looked at 156,000 iOS apps and discovered more than 815,000 hardcoded secrets, including very sensitive secrets like keys to cloud storage, various Application Programming Interfaces (APIs), and even payment processors. The researchers noted how: “The average app’s code exposes 5.2 secrets, and 71% of apps leak at least one secret.” Secrets hard-coded in the source code of the apps are considered exposed because they are relatively easy to find and abuse by cybercriminals.
Read more…
Source: Malwarebytes Labs
Related:
- How Top Companies Accidentally Leaking Terabytes of Sensitive Data Online
August 9, 2017
An anti-malware detection service provider and premium security firm has been accused of leaking terabytes of confidential data from several Fortune 1000 companies, including customer credentials, financial records, network intelligence and other sensitive data. However, in response to the accusations, the security firm confirmed that they are not pulling sensitive files from its customers; instead, it’s ...
- Sweden data leak ‘a disaster’, says PM
July 24, 2017
The Swedish government has admitted to a huge data leak made by one of its own departments during an IT outsourcing procedure in 2015. Sweden’s prime minister said it was “a disaster”, Swedish media reported. Reports say that confidential data about military personnel, along with defence plans and witness protection details, were exposed by the Transport Agency. They ...