Another data breach has been reported on Facebook and Twitter. On Monday, Facebook and Twitter have admitted that the data of “hundreds of users” may have been improperly accessed after their accounts were used for logging into Google Play Store apps on Android devices. As from the report, this security breach only affected Android users and not for the iOS platform.
Security researchers discovered that the One Audience and Mobiburn software development kits (SDK) provided access to users’ data, including email addresses, usernames, and recent tweets, on both the platforms. The companies were notified regarding this issue by third-party security researchers, Twitter said in a blog post disclosing the issue.
According to the researchers, if someone has used thier Twitter or Facebook account to login into the compromised apps, their data might have been stolen by the app developers. CNBC said that users of photo editing apps like Giant Square and Photofy could be affected.
A Facebook spokesperson told The Verge: “After investigating, we removed the apps from our platform for violating our platform policies and issued cease and desist letters against One Audience and Mobiburn”.
In a blog post published on Monday, Twitter said that the “issue is not due to a vulnerability in Twitter’s software, but rather the lack of isolation between SDKs [software development kits] within an application.” The company will notify users of Twitter for Android who may have been impacted.
Twitter said that it has notified Google and Apple of the vulnerability “so they can take further action if needed.” Google and Apple did not immediately respond to a request for comment.
This is not the first data breach issue from the social media giants. Earlier this month, Facebook revealed that at least 100 app developers may have accessed Facebook users’ data for months, confirming that at least 11 partners “accessed group members” information in the last 60 days”.
So, it is advised to all the users to avoid inappropriate social login to vulnerable apps to secure them from data breaches in future.
For the latest tech news and updates, Install TechCodex App and follow us on Facebook and Twitter. Also, if you like our efforts, consider sharing this story with your friends, this will encourage us to bring more exciting updates for you.