The UK Conservative party is learning a hard lesson about the importance of basic security measures in mobile apps. Users have discovered that you could log into the party's conference app using only an attendee's email address, providing access to all kinds of sensitive data. And when many of the conference participants are politicians who registered with their email addresses at Parliament... you can guess what happened next.
Source: Dawn Foster (Twitter), Guardian
App flaw let anyone access UK Conservative politicians' data posted first on https://www.engadget.com
No comments:
Post a Comment