Messaging apps JusTalk and JusTalk Kids, which have nearly 20 million international users, believed their information was end-to-end encrypted, but according to a log database used by the company to track bugs. Millions of user messages, locations, conversations and call logs stored in plain text

This was revealed by security researcher Anurag Sen, who found the exposed database and asked TechCrunch for help in reporting the delay to the company, both undertook to find that the database and information could be accessed. It was enough to access the web browser with Huawei’s cloud server in China and just the IP address.

The investigation is on Shodan, a search engine for exposed devices and databases, It turns out that the server has been constantly storing logs since at least the beginning of January.when the database is first made available.

The database was shut down after TechCrunch reported that the app wasn’t end-to-end encrypted as the company claimed.

According to the private portal, Juphoon, the China-based cloud company behind the messaging app, says on its website that it created JusTalk in 2016 and is currently owned and operated by Ningbo Jus, a company that appears to share the same office listed. Juphoon website. But Leo Lv, CEO of Juphoon and founder of JusTalk, did not respond or say whether the company plans to notify users of the vulnerability.

The data collected included the location of thousands of users, users’ phones and large groups in the US, UK, India, Saudi Arabia, Thailand and China.

Tutorial and tricks for the cat video game Stray

Data of 5.4 million Twitter users leaked. Influenced?

Source: Exame

Previous articleMozilla launches Firefox 103: see the main news
Next articleHow to recover hacked Instagram account

LEAVE A REPLY

Please enter your comment!
Please enter your name here