Keep up with the latest cybersecurity threats, newly discovered vulnerabilities, data breach information, and emerging trends. Delivered daily or weekly right to your email inbox.
Sponsored By
Call Recorder iPhone App Flaw UncoveredCall Recorder iPhone App Flaw Uncovered
Researcher finds thousands of recorded calls easily accessible to others.
Dark Reading Staff
March 10, 2021
1 Min Read
A popular iPhone app with more than 1 million downloads has a flaw that may have exposed thousands of users' recorded conversations.
The security vulnerability was discovered by researcher Anand Prakash, founder of PingSafe AI, and initially reported by TechCrunch.
The report claims Prakash found that the app, called "Call Recorder," allowed anyone to access the call recordings from other users simply by knowing their phone number. TechCrunch verified the findings using a spare phone with a dedicated account.
Prakash made the discovery "using a readily available proxy tool like Burp Suite," according to the report, and could view and modify the network traffic going in and out of the app.
"That meant he could replace his phone number registered with the app with the phone number of another app user and access their recordings on his phone," according to the report.
Read the full write up on the flaw here.
About the Author(s)
You May Also Like
More Insights
Webinars
Hacking Your Digital Identity: How Cybercriminals Can and Will Get Around Your Authentication Methods
Oct 26, 2023Modern Supply Chain Security: Integrated, Interconnected, and Context-Driven
Nov 06, 2023How to Combat the Latest Cloud Security Threats
Nov 06, 2023Reducing Cyber Risk in Enterprise Email Systems: It's Not Just Spam and Phishing
Nov 01, 2023SecOps & DevSecOps in the Cloud
Nov 06, 2023
Events
