More than ten thousand login details not only for Apple ID were leaked from the database of the TeenSafe application

21. 5. 2018

The foreign server ZDNet came up with information that there was a rather large leak of personal information related to Apple ID accounts. The information was leaked from the database of one particular app that deals with parental control. The leaked data is said to affect up to ten thousand accounts.

It could be interest you

News

Twitter reports a possible password leak, recommends changing them

David Hanak

The leaked data belongs to the TeenSafe app, which allows parents to monitor what their kids are doing on their iPhone/iPad (the app is also available for Android). The application allows parents to view text messages, constantly monitor the location, call history and browsing in the web browser or the list of installed applications.

The data leak was discovered by an English security-analytics company that deals with this issue. As it turned out, a significant portion of TeenSafe's user database was stored on two servers belonging to Amazon Web Services. They were not secured in any way and the document was here in a completely open form. It could thus be viewed by anyone who found their way to it. Both the company behind the TeenSafe application and Amazon were immediately notified, which shut down the aforementioned servers.

The database contained several sensitive information about users. There were both children's and parents' email addresses, children's and parents' Apple ID addresses, user device names and unique identifiers. Probably the most sensitive information contained here were Apple ID passwords from children's accounts, which were stored here in plain text. All this despite the statement of the authors of the application that they use several encryption methods to store sensitive user information.

The TeenSafe application is used by around a million parents, but the leak from the database concerned "only" some 10 thousand accounts. If you use the aforementioned application, we strongly recommend changing all access data, both on connected parental devices and especially on children's devices. The company behind TeenSafe is still investigating the situation.

Source: Macrumors

Topics: Apple ID, Amazon, MacRumors, Android, user, iPhone, Application, Apple Lossless Audio CODEC (ALAC),

Discussion of the article

Your name

Your comment

By filling in the above data, I acknowledge that the company TEXT FACTORY s.r.o., registered office in Brno, Durďákova 336/29, Černá Pole, ZIP code: 613 00, ID number: 06157831, registered at the Regional Court in Brno, section C, insert 100399, will process my personal data provided in the registration form filled out by me on the basis of the legitimate interests of TEXT FACTORY s.r.o. according to Article 6 paragraph 1 letter f) GDPR and to fulfill legal obligations (Article 6, paragraph 1, letter c) GDPR), for the following purposes: the necessity to ensure the authorization of visitors to websites operated by TEXT FACTORY s.r.o. to actively contribute to published articles or within discussion forums and exercising the rights of TEXT FACTORY s.r.o. as the administrator of these discussion forums. More information about the processing of personal data and rights can be found in Lessons on personal data protection. the entire text

It could be interest you

Related