comscore Data Breach; Some apps improperly accessed Facebook and Twitter data
News

Data Breach: Some App misuse Twitter and Facebook logins to steal personal data

Third-party security researchers discovered that the One Audience and Mobiburn software development kits (SDK) provided access to users' data.

  • Published: November 26, 2019 1:32 PM IST
Facebook used less for news as youngsters turn to WhatsApp: Report, , Data breach

In yet another data breach, Facebook and Twitter have admitted that data of hundreds of users was improperly accessed. The companies clarified that some third-party apps on the Google Play Store were behind this improper access when users logged into the apps. Security researchers discovered that the One Audience and Mobiburn software development kits (SDK) provided access to users’ data. The problematic apps were able to access information including email addresses, usernames, and recent tweets, on both the platforms. Twitter and Facebook said they will notify the people affected by these apps. Also Read - Google removes anti-India Android app from Play Store: What you need to know

Data Breach details

Twitter issued a statement on Monday in response to this incident. It stated, “We recently received a report about a malicious mobile software development kit (SDK) maintained by One Audience. We are informing you about this today because we believe we have a responsibility to inform you of incidents that may impact the safety of your personal data or Twitter account.” Third-party security researchers were the first to notify Facebook and Twitter about the vulnerability. Also Read - WhatsApp bug with malicious MP4 video file does not affect user data: WhatsApp

Watch: Samsung Galaxy Watch LTE Review

A Facebook spokesperson also issued a statement regarding the incident. The spokesperson added, “After investigating, we removed the apps from our platform for violating our platform policies.” It has also issued cease and desist letters against One Audience and Mobiburn. Facebook also plans to notify the users affected by this data breach. It is also worth noting that the victims of the data breach gave the problematic apps, access to their profile information. The report noted that iOS users do not seem to be affected. Also Read - A third-party Android app is stealing money of users: All you need to know

Twitter indicated that this data breach was not likely due to a vulnerability in the official Twitter app for Android. Instead, it was likely because of “lack of isolation between SDKs” in an app. iOS version of this SDK does not seem to affect Twitter for iOS users. The company has already informed Google and Apple regarding the SDK for any further action.

Not the first time

This is not the first case of improper user data access. For context, Facebook revealed that “at least 100 app developers” accessed user data for months. The company also stated that “at least 11 partners” accessed the “group members” information in the last 60 days. Most of these apps were related to social media management, and video streaming. The information includes names, and profile pictures using Groups API. Earlier, we saw a similar situation with the Cambridge Analytica scandal.

With inputs from IANS.

For the latest tech news across the world, latest PC and Mobile games, tips & tricks, top-notch gadget reviews of most exciting releases follow BGR India’s Facebook, Twitter, subscribe our YouTube Channel.
  • Published Date: November 26, 2019 1:32 PM IST



new arrivals in india

Samsung Galaxy M51
Samsung Galaxy M51

24,999

Poco M2
Poco M2

10,999

Oppo F17 Pro
Oppo F17 Pro

22,990

Realme 7 Pro
Realme 7 Pro

19,999

Realme 7
Realme 7

14,999

Xiaomi Redmi 9A
Xiaomi Redmi 9A

6,799

Vivo Y20
Vivo Y20

12,990

Xiaomi Redmi 9
Xiaomi Redmi 9

8,999

Nokia 5.3
Nokia 5.3

13,999

Motorola Moto G9
Motorola Moto G9

11,499

Realme C15
Realme C15

9,999

Realme C12
Realme C12

8,999

Samsung Galaxy Note 20
Samsung Galaxy Note 20

77,999

Xiaomi Redmi 9 Prime
Xiaomi Redmi 9 Prime

9,999

Oppo Reno4 Pro
Oppo Reno4 Pro

34,990

Samsung Galaxy M01 Core
Samsung Galaxy M01 Core

5,499

Realme 6i
Realme 6i

12,999

Asus Rog Phone 3
Asus Rog Phone 3

49,999

OnePlus Nord
OnePlus Nord

24,999

Infinix Smart 4 Plus
Infinix Smart 4 Plus

7,999

Xiaomi Redmi Note 9
Xiaomi Redmi Note 9

11,999

Samsung Galaxy M01s
Samsung Galaxy M01s

9,999

Vivo X50 Pro 5G
Vivo X50 Pro 5G

49,990

Vivo X50 5G
Vivo X50 5G

34,990

Realme C11
Realme C11

7,499

Poco M2 Pro
Poco M2 Pro

13,999

Realme X3
Realme X3

24,999

Realme X3 SuperZoom
Realme X3 SuperZoom

27,999

Tecno Spark Power 2
Tecno Spark Power 2

9,999

Oppo A12
Oppo A12

9,990

Oppo A52
Oppo A52

16,990

Samsung Galaxy A21s
Samsung Galaxy A21s

15,999

Oppo Find X2
Oppo Find X2

64,990

Motorola One Fusion Plus
Motorola One Fusion Plus

17,499

Samsung Galaxy A31
Samsung Galaxy A31

20,999

Samsung Galaxy M01
Samsung Galaxy M01

8,999

Samsung Galaxy M11
Samsung Galaxy M11

10,999

Infinix Hot 9 Pro
Infinix Hot 9 Pro

9,999

LG Velvet
LG Velvet

Price Not Available

Xiaomi Mi Note 10 Lite
Xiaomi Mi Note 10 Lite

Price Not Available

Apple iPhone SE 2020
Apple iPhone SE 2020

42,500

Honor 30 Pro
Honor 30 Pro

Price Not Available

Honor 30
Honor 30

Price Not Available

OnePlus 8
OnePlus 8

44,999

OnePlus 8 Pro
OnePlus 8 Pro

54,999

Xiaomi Redmi Note 9 Pro
Xiaomi Redmi Note 9 Pro

13,999

Motorola Moto E4
Motorola Moto E4

8,999

Samsung Galaxy On Max
Samsung Galaxy On Max

9,775

nubia N2
nubia N2

15,999

Karbonn K9 Kavach 4G
Karbonn K9 Kavach 4G

5,290

Motorola Moto C Plus
Motorola Moto C Plus

6,999

Best Sellers