Courtesy of United Artists |
A security researcher named Gareth Wright has uncovered an unpleasant security hole in the Android and iOS Facebook apps,
reports The Next Web.
A motivated hacker could copy a plain text file off of your mobile device that would grant him access to your entire account.
The problem exists within the app itself -- the sensitive data isn't encrypted, it simply sits on your device in plain, readable form.
There's no jailbreak required to get this data either. Using a free piece of software called iExplore, which lets you browse your iPhone as if it were an external hard drive, Wright was able to gain access to the text file.
The trouble runs a level deeper, as The Next Web also discovered that Dropbox suffers from this same vulnerability.
Now that this news is out there, keep a close eye on who has your device and be on the lookout for app updates from Facebook and Dropbox.
This entry passed through the Full-Text RSS service — if this is your content and you're reading it on someone else's site, please read the FAQ at fivefilters.org/content-only/faq.php#publishers. Five Filters recommends: Donate to Wikileaks.
No comments:
Post a Comment