More than 1800 apps on Android and iPhone leak your personal and sensitive data
 |
| More than 1800 apps on Android and iPhone leak your personal and sensitive data |
Symantec, the American company specializing in security and information management, has warned that many users around the world may be exposed to a breach in their information through the use of many applications that are installed on their phones, and the company says that most of those who may be exposed to these violations are phones that operate with operating systems. iOS, as the main cause of this problem are fraudulent operations that arise through the reuse of security tokens or what is known as a token through the use of a specific vulnerability, which is used in Amazon Web Services that are used in cloud services, and these services are used with Many applications through which large amounts of data are transferred between them and Amazon services.
Because of the fraudulent operations carried out by hackers through the use of the security code in the Amazon cloud services, these vulnerabilities were detected in more than 1,859 applications, and the security company Symantec says that 98% of these applications work on iOS systems, and it was also detected that they are used Security codes in cloud services related to Amazon in more than 53% of the applications examined by Symantec, and the company says that the risk of breaching user data may increase to ten times, and that the cause of this problem is software errors from the developers of these applications when developing applications from By developers who use SDKs for software development.
According to Symantec, this vulnerability exposes phone users to a large data leak in both iPhone and Android phones, and says that the vulnerability is limited in the case of programmers of these applications using the code that connects Amazon cloud services and the application in the case of allowing only access to a single file located in Amazon Simple Storage Service (S3), in the case of allowing access to many files by the programmer, may expose this to a large percentage of the violation of user data, especially financial transactions, which a fraudster may be able to access through accidental leaks.