Multiple popular mobile applications for iOS and Android come with hardcoded, unencrypted credentials for cloud services like Amazon Web Services (AWS) and Microsoft Azure Blob Storage, exposing user data and source code to security breaches.
https://www.bleepingcomputer.com/news/security/aws-azure-auth-keys-found-in-android-and-ios-apps-used-by-millions/
BleepingComputer /
npub1j7…v7hg2
2024-10-22 20:19:29
Author Public Key
npub1j7dz37jrwqhehe8ydzpk5kcjpnzzv53h7s54lj62nv5w9fcar34suv7hg2Published at
2024-10-22 20:19:29Event JSON
{
"id": "2c2da581c2371a4830b282373c8499497f9800bbfbcc9be3b7ceae3310e746c3",
"pubkey": "979a28fa43702f9be4e468836a5b120cc4265237f4295fcb4a9b28e2a71d1c6b",
"created_at": 1729628369,
"kind": 1,
"tags": [
[
"proxy",
"https://infosec.exchange/users/BleepingComputer/statuses/113352924813350024",
"activitypub"
]
],
"content": "Multiple popular mobile applications for iOS and Android come with hardcoded, unencrypted credentials for cloud services like Amazon Web Services (AWS) and Microsoft Azure Blob Storage, exposing user data and source code to security breaches.\n\nhttps://www.bleepingcomputer.com/news/security/aws-azure-auth-keys-found-in-android-and-ios-apps-used-by-millions/",
"sig": "3567de2cc2d3440f6ffb2c4a9318cc224967e0b55301f1d910e127ee1aebd92959f36c2de9134ce266b2238b46b6b71f5bfaeb98441b7a13e14e298cd00aa2c9"
}