App that lets parents spy on their teens may have leaked private data

Mail Online | 5/21/2018 | Phoebe Weston For Mailonline
lhumaralhumara (Posted by) Level 3
Click For Photo:

Click For Video:

An app called Teensafe that lets parents keep an eye on their teens' online activity may have leaked the private data of tens of thousands of youngsters.

The Apple ID passwords and usernames were stored without encryption on an unsecured server, meaning anyone could access the information without a password, a report has revealed.

App - Parents - Access - Youngsters - Web

The app is designed to let parents access their youngsters' web browser history, text messages, call logs and device location.

Ironically TeenSafe, which bills itself as a 'secure' monitoring app, requires two-factor authentication to be disabled, so anyone could access the Apple ID accounts using login credentials from leaky servers.

App - Servers - Amazon - Cloud - Service

At least one of the app's servers, which was hosted by Amazon's cloud service, could be accessed without a password, according to the report by ZDNet.

British security researchers Robert Wiggins who searches for public and exposed data found two servers had been compromised.

'We - Action - Servers - Public - Customers

'We have taken action to close one of our servers to the public and begun alerting customers that could potentially be impacted,' a TeenSafe spokesperson told ZDNet.

The database includes the child's device name - which is often just their name - and their unique identifier.

Server - Offline - Records - Customer - Data

Shortly before the server went offline, more than 10,200 records containing customer data were exposed.

None of the records contained photos, messages or the locations of either parents or children, the report revealed.


However, some of these were duplicates...
(Excerpt) Read more at: Mail Online
Wake Up To Breaking News!
Sign In or Register to comment.

Welcome to Long Room!

Where The World Finds Its News!