According to recent research from Check Point, thousands of mobile apps, some of which have been downloaded tens of millions of times, are exposing critical data via open cloud-based databases owing to misconfigured cloud implementations.
The blog post released this week stated that 2,113 mobile apps employing the Firebase cloud-based database exposed data in three months, “leaving victims vulnerable and easily available for threat actors to exploit.”
Threat actors can gain access to 5% of the databases. According to analysts, there’s a gold mine of exploit opportunities hidden in thousands of smartphone apps. Researchers have discovered prominent apps for dating, health, bookkeeping, logo design, e-commerce, and more that were left susceptible by cloud misconfigurations. Some of the apps had more than 10 million downloads.