21.4 C
New York
Friday, November 27, 2020

Latest Posts

Zoom for Home is unnecessary but quite eye-catching

Zoom for Home The saying goes that crises are always times of opportunity and it is true. From each of them there was always someone...

You can now listen to Spotify music on Chromecast from your computer

Spotify and Chromecast from Mac? Something so simple and straightforward has been asking for supplications for a very long time. Thus we can see it...

Spellbreak, a Battle Royale with a Legend of Zelda air from Switch

Spellbreak, a class-based battle royale https://www.youtube.com/watch?v=n6MRg-D3T-w Titles like PUBG, Fortnite,...

Millions of users won’t enjoy xCloud because Apple doesn’t want to

Apple and its obstacles to the game via streaming A few months ago, when the Project xCloud test was underway for both Android and iOS...

Android alert: it is better to remove this popular SMS app

The Go SMS Pro application is one of the most popular within its category – messaging apps. According to the investigation by the cybersecurity agency, Trustwave, users’ private photos, videos and other files are at serious risk of exposure.

What is most serious is the fact that the vulnerability was discovered last August, however, the programmers were warned, but did nothing to fix it. In view of the above, the cybersecurity agency thus issues a severe recommendation.

You better remove the GO SMS Pro app now

GO SMS Pro app Google Play Store
The listing and general features of the app on the Google Play Store

The free application for Android allowed to replace the native app of messages, being well classified and relatively popular in this category. Note that in the Android operating system it is possible, for example, to exchange system applications.

In fact, the openness and versatility of the Android system is one of the undeniable advantages of this Google platform. However, it can also be a vector used for questionable purposes, purposefully or passively as occurred in the present case.

With more than 100 million installations from the Google Play Store, the GO SMS Pro app is fraught with a severe security breach that could compromise user data. In other words, it poses a risk to privacy.

The latest security breach on Android

At issue is an abnormal behavior, detected by the researchers, which ends up exposing the users’ data. This being a popular app in the Google ecosystem, the implications of this security breach can affect millions of people.

According to Trustwave, the problem is divided into several behaviors and activities in critical areas that, taken together, make the application a serious security and privacy risk. Take, for example, the fact that all files shared through a message sent by the GO SMS Pro app are sent to the Internet.

GO SMS Pro app Google Play Store
Files sent by the GO SMS Pro messaging app

Then, the general application an access code to the files of the sender (s), also known as link, so that the recipient (s) have access to them. It is important to note that this behavior occurs even if both users use this SMS app.

Above we can see an instance in which the contents are shown, as well as the link created for remote access. This situation creates a serious risk to the user’s privacy, facilitating improper access to the files sent.

In summary, we are dealing with sending the contents to a specific online server and, in addition, unnecessary storage. This multiplies the chances of a third party obtaining undue access to them.

The SMS GO Pro app is a serious attack on privacy

SMS GO Pro Google Play Store

The security agency’s report highlights that application developers are aware of such behaviors. However, they seem to ignore the problems, without any action being taken to correct or even mitigate the situation.

Given the easy access to the links (links) to the uploaded files, without any authentication being required, nothing prevented third parties from having access to the same data.

Trustwave advised the responsible developers and gave them 90 days to remedy the flaws. In the absence of a response after the indicated period, the security agency made these conclusions public.

EBox editors recommend:

Latest Posts

Redmi Note 9 Pro 5G was an instant success. Astronomical pre-order number!

After its presentation event yesterday in China, the new smartphones from Xiaomi's subsidiary - Redmi Note...

It’s time to domotize your home with all these Black Friday offers

Open the door without keys Something extremely practical is being able to go outside without worrying about the keys. With the kit Nuki Combo...

Caught stealing PS5 on video, Amazon courier gets fired

PlayStation 5 arrived in Europe last week, being one of the most desired consoles ever. ...

Black Friday: take advantage of discounts on OnePlus Nord and OnePlus 8 Pro

Black Friday has arrived, and with it comes what is one of the best times of...

Don't Miss

LG Stylo 4: Here's a First Look at this Android Smartphone

Right now most of LG's attention is focused on its high-end smartphone. The LG G7 ThinQ...

7 free new games on Google Play Store

It's time to take a look at some games that have just arrived at the Google...

Samsung folding smartphone hits the spot in new announcement!

The 'world' is looking forward to the official presentation of South Korea's first folding smartphone (Galaxy...

Former director of Google Pixel joins Adobe to create the ultimate photo app!

Earlier this year, Marc Levoy left Google. Levoy was the director of photography in the department...

Nokia 3.1 Plus is now official with Android One for about 135 €

Finnish manufacturer HMD Global, true to information leaks, has just introduced the new Nokia 3.1 Plus,...
%d bloggers like this: