Since May 1903 update, Windows 10 will notify users about risks, associated with connection to…
However, the base that contained more than two million passwords was not protected enough. As a result, anyone could enter to it and upload passwords.
Sanyam Jian, researcher from GDI Foundation, detected passwords’ database on the Internet.
“We spent more than two weeks trying to contact the developer, believed to be based in China, to no avail. ” – told expert.
Therefore, experts chosen another way – they connected with Digital Ocean, a hoster that accommodated unprotected database.
“Eventually we contacted the host, DigitalOcean, which took down the database within a day of reaching out. We notified the user and have taken the [server] hosting the exposed database offline”, — Sanyam Jain said
There is one more nuance in this story. Despite “WiFi Finder” developers argue that their base collects only passwords of public points, researchers found a series of passwords from home Wi-Fi nets. In this way, considering presence of geolocation data with saved passwords, leakage becomes even more dangerous.
Source: techcrunch.com
Pbmsoultions.com is a domain that tries to trick you into clik to its browser notifications…
Prizestash.com is a site that tries to trick you into subscribing to its browser notifications…
Verifiedbreaking.com is a domain that tries to force you into subscribing to its browser notifications…
Themoneyminutes.com is a domain that tries to force you into subscribing to its browser notifications…
News-xcidizi.com is a domain that tries to trick you into clik to its browser notifications…
Everytraffic-flow.com is a domain that tries to trick you into subscribing to its browser notifications…
View Comments
I'll download this application from China, thanks)