вЂWe identified it was feasible to compromise any account in the application within a 10-minute timeframe’
Critical zero-day weaknesses in Gaper, an вЂage gap’ dating app, could possibly be exploited to compromise any individual account and potentially extort users, protection scientists claim.
The lack of access settings, brute-force security, and authentication that is multi-factor the Gaper software suggest attackers may potentially exfiltrate delicate individual information and usage that data to obtain complete account takeover in a matter of ten full minutes.
More worryingly nevertheless, the assault didn’t leverage “0-day exploits or advanced methods and then we wouldn’t be amazed if this was not previously exploited into the wild”, stated UK-based Ruptura InfoSecurity in a technical write-up posted yesterday (February 17). Fortsätt läsa ”Safety researchers warn of critical zero-day flaws in вЂage gap’ dating app Gaper”