- Last Active
I have usually recommended to friends and family to get the current model, but for the X and XS there’s no way I could justify the price tag. Last year I told them to get a 7 or an 8, because the extra price is for not must haves. I wanted to upgrade from my 7 this year, but opted for the battery replacement instead (before dec 31). I also want a smaller phone, which is currently not offered. Something like a 4.5-4.7” phone. These 3 things are what have kept me from buying a new phone (price, size, cheap battery replacement).
foggyhill said:Lara Croft 835 said:maestro64 said:HeliBum said:
Yep, leaking private information and Google are synonymous.
Anybody know where to find the list of affected apps?
Enterprises are at significant risk from the Firebase vulnerability because 62% of enterprises have at least one vulnerable app in their mobile environment. The vulnerable apps are in multiple categories, including tools, productivity, health and fitness, communication, finance and business apps.
Worse, the data being leaked is highly sensitive including PII, PHI, plaintext passwords, social media account and cryptocurrency exchange private access tokens, financial transactions, vehicle license plate and geolocation information, and more.
Our Mobile Threat Team discovered over 2,300 unsecured Firebase databases and 3,000 unique iOS and Android apps with this vulnerability. The Android versions of these apps alone have been downloaded over 620 million times.
More than 100 million records are exposed, including:
Why on god's green earth are plain text passwords even stored..., why not store salted hashes, who the hell does that... It wasn't even good security practice in 1993, let alone 25 years later!!.I just don't get it.Seems it's not just Google that were idiotic here; most IT and devs are lazy ass that wouldn't know security if it bit them in the ass.
- 2.6 million plain text passwords and user IDs
- 4 million+ PHI (Protected Health Information) records (chat messages and prescription details)
- 25 million GPS location records
- 50 thousand financial records including banking, payment and Bitcoin transactions
- 4.5 million+ Facebook, LinkedIn, Firebase, and corporate data store user tokens