Misconfigured Firebase Databases Exposing Critical Databases in Mobile Apps

20
Misconfigured Firebase Databases Exposing Critical Databases in Mobile Apps-01 (1)

According to recent research from Check Point, thousands of mobile apps, some of which have been downloaded tens of millions of times, are exposing critical data via open cloud-based databases owing to misconfigured cloud implementations.

The blog post released this week stated that 2,113 mobile apps employing the Firebase cloud-based database exposed data in three months, “leaving victims vulnerable and easily available for threat actors to exploit.”

Threat actors can gain access to 5% of the databases. According to analysts, there’s a gold mine of exploit opportunities hidden in thousands of smartphone apps. Researchers have discovered prominent apps for dating, health, bookkeeping, logo design, e-commerce, and more that were left susceptible by cloud misconfigurations. Some of the apps had more than 10 million downloads.

Read More: https://threatpost.com/misconfigured-firebase-databases-exposing-data-mobile-apps/178965/