Messaging app GO SMS Pro found to pose privacy risks

The personal data of more than 100 million users of a messaging app was potentially put at risk by a vulnerability which exposed privately shared media content sent through the service, cybersecurity company Trustwave revealed.

In a blog, Trustwave said the vulnerability discovered in the GO SMS Pro service generated a link whenever someone sent a media file, letting anyone access the content without undergoing any authentication or authorisation processes first.

Trustwave added the links generated by the app were sequential and predictable, and as a result a “malicious user” would be able to access media files sent after obtaining the initial link.

While noting the weakness was discovered only on GO SMS Pro v7.91, Trustwave said it believed other versions of the app were likely to also be affected.

The company said it hadn’t received a response after multiple attempts to contact the developer since August, arguing the vulnerability still presented danger to users.

\"IT電腦補習
立刻註冊及報名電腦補習課程吧!

Find A Teacher Form:
https://docs.google.com/forms/d/1vREBnX5n262umf4wU5U2pyTwvk9O-JrAgblA-wH9GFQ/viewform?edit_requested=true#responses

Email:
public1989two@gmail.com






www.itsec.hk
www.itsec.vip
www.itseceu.uk

Be the first to comment

Leave a Reply

Your email address will not be published.


*