- The Go SMS Professional app exposes personal photographs, movies, and different information of thousands and thousands of customers.
- Safety researchers discovered the flaw again in August.
- The app maker has not but responded to the findings or taken any steps to repair it.
In relation to third-party messaging apps for Android, Go SMS Professional is likely one of the hottest ones on the market. It has over 100 million installs as per its Google Play Retailer itemizing and markets itself because the primary platform to interchange Android’s inventory messaging app. Sadly for its customers, safety researchers have found a serious safety flaw within the app.
TechCrunch has printed a report primarily based on analysis carried out by Trustwave, revealing that thousands and thousands of Go SMS Professional customers are susceptible to file theft.
The app permits customers to share photographs, movies, and different information within the type of an internet tackle in order that those that don’t even have the app can entry the information simply with the assistance of the hyperlink. Safety researchers at Trustwave found that these hyperlinks are sequential. Which means that anybody who is aware of one internet tackle can predict others and entry information saved in them with out correct consent.
Furthermore, “An attacker can create scripts that would throw a large internet throughout all of the media information saved within the cloud occasion,” Karl Sigler, Senior Safety Analysis Supervisor at Trustwave advised TechCrunch.
The weak spot was found on model 7.91 of the Go SMS Professional app. It’s at present on model 7.93, with the newest replace having rolled out on November 18. Nevertheless, Trustwave believes that the vulnerability doubtless impacts earlier and probably future variations as effectively. TechCrunch additionally independently verified Trustwave’s findings.
The safety agency shared its discovering with the app maker in August and gave it 90 days to repair the problem, as is customary observe within the business. However after the deadline expired and not using a response, the researchers made their findings public.
So for those who’re utilizing Go SMS Professional proper now, chances are high you’re nonetheless affected. You may wish to take into account making a change to a different messaging app until the flaw is mounted. We’ll replace this text if the app maker ever responds to or takes motion on the problem.
Learn subsequent: The very best messenger apps for Android
Be the first to leave a review.