Developers: | Amazon |
Last Release Date: | 2022/08/19 |
Technology: | Video conferencing |
The main articles are:
2022: Amazon Ring app vulnerability fix
The American Amazon the company announced a fix for vulnerabilities the Amazon Ring app. Users OS Android time were under for a long time, threat because with this they could applications malefactors receive confidential ones. data This became known on August 19, 2022.
Ring is engaged in the development and supply of video telephones and video surveillance systems. The company's devices not only broadcast everything that happens to the monitor, but also save records to the cloud and display the picture in a mobile application.
A security researcher at Checkmarx analyzed the Android version of the application and discovered a vulnerability in it.
A vulnerable application installed on an Android device allows attackers to access sensitive data generated by the Ring application, not only geolocation and camera recordings, but also full names, email addresses, phone numbers and mail addresses.
As of August 19, 2022, users downloaded the Android Ring app more than 10 million times. At the same time, according to Amazon, no cases of exploitation of the vulnerability were found.
In addition, it is noted that the error was fixed in the May 27 update, but the fix was publicly announced only the other day[1].