Developers mistakenly coded credentials for accessing services provided by Twilio Inc (TWLO.N), said Appthoritys director of security research, Seth Hardy. Hackers could access those credentials by reviewing the code in the apps, then gain access to data sent over those services, he said.The findings highlight new threats posed by the increasing use of third-party services such as Twilio that provide mobile apps with functions like text messaging and audio calls. Developers can inadvertently introduce security vulnerabilities if they do not properly code or configure such services.This isnt just limited to Twilio. Its a common problem across third-party services, Hardy said. We often notice that if they make a mistake with one service, they will do so with other services as well.
Källa: Mobile-app errors expose data on 180 million phones: security firm
0 kommentarer