When we told you that parents can spy on their kids with this app installed, we weren't kidding. TeenSafe allows parents to apprehend all argument messages, including ones that were deleted and those beatific through a third affair app like WhatsApp. Logs of beatific and accustomed calls can be retrieved from a child's handset, forth with the annual of contacts on the phone. Browsing history and bookmarks can be obtained, and no amount area they go, the adolescent ones can't hide; real-time tracking will canyon area abstracts over to the parents. And the grownups can clue all of this advice after accepting accord from the kids.
But today's annual is absolutely not about the app's features. It appears that TeenSafe's servers were hosted by Amazon's billow annual and were attainable to anyone after acute a password. According to Robbie Wiggins, a security researcher in the U.K., two servers acceptance to the aggregation were leaking. While one of the servers alone dealt with analysis data, the added one independent the parent's email abode associated with an account, the Apple ID email abode acceptance to the child, the child's accessory name and its UDID number. It additionally stored the countersign to the child's Apple ID in plaintext.
TeenSafe requires that two agency affidavit be disabled, which agency that application the leaked information, a hacker could admission a child's annual and aggregate claimed abstracts and content. The company's website says that encryption is acclimated in case of a abstracts breach, although that doesn't assume to accept formed in this case.
TeenSafe has started to active all of the subscribers involved. 10,200 annal from the aftermost three months were in that server, although some of the annal were duplicates.
No comments:
Post a Comment