shot-button
Ganesh Chaturthi Ganesh Chaturthi
Home > Technology News > Data of over 100 million users exposed via 3rd party Cloud services Report

Data of over 100 million users exposed via 3rd-party Cloud services: Report

Updated on: 21 May,2021 11:00 AM IST  |  New Delhi
IANS |

The misconfiguration put users' personal data and developers' internal resources, such as access to update mechanisms, storage and more, at risk, the report said.

Data of over 100 million users exposed via 3rd-party Cloud services: Report

This picture has been used for representational purpose

After examining 23 Android applications, mobile app developers potentially exposed personal data of over 100 million users through a variety of misconfigurations of third-party cloud services, a report said on Thursday. According to Check Point Research (CPR), it recently discovered that in the last few months, many application developers have left their data and millions of users' private information exposed by not following best practices when configuring and integrating third party cloud-services into their applications.


The misconfiguration put users' personal data and developers' internal resources, such as access to update mechanisms, storage and more, at risk, the report said. Personal data includes emails, chat messages, location, passwords and photos, which, in the hands of malicious actors, could lead to fraud, identity theft and service swipes. According to the report, the researchers found that Astro Guru -- popular astrology, horoscope and palmistry app with over 10 million downloads -- has a misconfiguration.


Also read: Facebook purges over 18M pieces of fake, harmful Covid-19 content


After users input their personal information such as their name, date of birth, gender, location, email and payment details, Astro Guru provides them a personal astrology and horoscope prediction report, the report said. This misconfiguration of real-time databases is not new and continues to be widely common, affecting millions of users, the report said. All CPR researchers had to do was attempt to access the data. There was nothing in place to stop the unauthorised access from happening, it added. The report said that an effective mobile threat defence solution needs to be able to detect and respond to a variety of different attacks while providing a positive user experience.

This story has been sourced from a third party syndicated feed, agencies. Mid-day accepts no responsibility or liability for its dependability, trustworthiness, reliability and data of the text. Mid-day management/mid-day.com reserves the sole right to alter, delete or remove (without notice) the content in its absolute discretion for any reason whatsoever

"Exciting news! Mid-day is now on WhatsApp Channels Subscribe today by clicking the link and stay updated with the latest news!" Click here!


Mid-Day Web Stories

Mid-Day Web Stories

This website uses cookie or similar technologies, to enhance your browsing experience and provide personalised recommendations. By continuing to use our website, you agree to our Privacy Policy and Cookie Policy. OK