قالب وردپرس درنا توس
Home https://server7.kproxy.com/servlet/redirect.srv/sruj/smyrwpoii/p2/ Technology https://server7.kproxy.com/servlet/redirect.srv/sruj/smyrwpoii/p2/ Stalkerware in particular has left gigabytes of sensitive personal information unprotected on the internet and cannot be reached to correct it / Boing Boing

Stalkerware in particular has left gigabytes of sensitive personal information unprotected on the internet and cannot be reached to correct it / Boing Boing



Security researcher Cian Heasley discovered an unprotected online storage folder available over the Internet, containing all the data that stalkers and snoops trains from their victims through a commercial program that steals photos and recordings from their devices.

Included in the leak are 3.7 GB MP3 recordings (25,000 total) of personal phone calls and 16GB images (95,000 in total), including highly sensitive and personalized images.

Both Heasley and motherboards have repeatedly contacted the stalkerware firm to warn them of the breach, but they have not received a response despite several attempts. Out of great caution, Motherboard has not named the company while the customers' victims are exposed.

Stalkerware companies (formerly) market their products to jealousy spouses, employers, parents, and even law enforcement. As you might expect from companies involved in such unethical behavior, these companies are notorious for their poor security and often break all of their customers' victim data. Motherboards have covered 1

2 different vendors' breaks in the last two years: "Retina-X (twice), FlexiSpy, Mobistealth, Spy Master Pro, SpyHuman, Spyphone, TheTruthSpy, Family Orbit, mSpy, Copy9 and Xnore."

The exposed database was found by security researcher Cian Heasley, who contacted us when he found it earlier this year. The database is still online and has been online for at least six weeks. Pictures and sound recordings are still uploaded to it almost every day. We will not mention the company to protect the victims who can be spied without their consent or knowledge, and on top of that – their images and calls uploaded to a server open to anyone with an internet connection.

We have spent weeks trying to pronounce this vulnerable to the company and secure the private photos. We reached the company's official contact email, which appeared on its site. No answer. We reached the Gmail address of the site's administrator, which also seems to be the company's founder. No answer. We left a voicemail for a Google Voice number listed on the site's WHOIS details. No answer.

This spyware data leak is so bad we can't even tell you [Lorenzo Franceschi-Bicchierai/Motherboard]

( via Ben Watts, CC-BY )

<! –

Cory Doctorow

I'm writing books. My latest is: a YA graphic novel called In Real Life (with Jen Wang); a nonfiction book on the art and the internet called information will not be free: laws for the internet age (with introductions of neil gaiman and amanda palms) and a ya science fiction novel called homeland (that is the successor to the little brother). I speak everywhere and I tweet and tumble too.

->


Source link