Cyber security news for all


    Aptoide Android App Store has reported 20 million user data leaks

    Attackers copied data from over 20 million store users at the Android app store Aptoide last week. This emerges from a message from Aptoide to its customers as well as information on the website of the password verification service HIBP. The leaked data is already part of the HIBP database, so that users can check there whether it is affected.

    20 Million Users Are Affected

    Data from more than 20 million aptoid users has been posted in a popular hacker forum in recent days. This includes a lot of personally identifiable information. In addition to the name and email address, this also includes the IP addresses of the users recorded during registration and details of the devices used. If a date of birth was given, this can also be found here. And especially unpleasant for developers, the tokens for authorizing your own account are also included.

    The hacked passwords are also listed. This now gives attackers the opportunity to find out the password behind it. How big this effort is and whether it works at all, depends not least on the complexity of the chosen passphrase. This method was used as the hash method, which is now considered out of date because it has weaknesses. It has not been supported by common web browsers for years. With enough computing effort, it should be possible to find out at least simple passwords.

    Aptoid writes on its first blog entry on the data leak that the e-mail addresses were used for the application and encrypted passwords were copied. HIBP writes in a brief information about the leak that details about the web browser and IP addresses were also copied. According to the blog entries, it will only be possible to register again with Aptoide until the data leak has been fully investigated and further information is available.

    Recent Articles

    Russian Cybercriminal Behind “Cardplanet” Site Sentenced

    According to the United States Department of Justice, a Russian cybercriminal, Aleksey Burkov, 30—who operated Cardplanet site: a site that trafficked stolen card details—has...

    Hackers Used Malicious Docker Images to Mine Monero

    Researchers found malicious images on Docker Hub used for crypto mining. Palo Alto Networks' Unit  42, unraveled a crypto mining scheme which uses malicious Docker...

    NSA outlines requirements for secure collaboration services for US government telework

    The new National Security Agency (NSA) guidelines are a window of security for users. Everyone has been trying to return to their lives since...

    Cybercriminals threaten to sell off “scandalous” files swiped from Mariah Carey, Nicki Minaj, Puff Daddy’s legal eagles

    There's no escaping these cybercriminals. In a recent case of "cyber-extortion," threat actors known as REvil, are threatening to expose celebrity "dirt." These threat actors...

    Twitter apologises for exposed customers data

    In what is described as a "data security incident," sensitive details of Twitter's customers were exposed. Unlike other cases of a breach which are...

    Related Stories

    Leave A Reply

    Please enter your comment!
    Please enter your name here

    Stay on op - Ge the daily news in your inbox