Information Leaked From JusTalk For Months

It turns out that one of the important databases of the popular application JusTalk has been open for months. This database also contains sensitive information.
 Information Leaked From JusTalk For Months
READING NOW Information Leaked From JusTalk For Months

There are many socializing or messaging applications on the internet. The question of how these applications ensure their security also comes up frequently. Especially platforms such as Facebook, WhatsApp, Instagram are often forced to respond to this issue.

On the other hand, there are also smaller social networks and messaging applications. Some of these applications are trying to stand out with points such as privacy and some security. JusTalk, on the other hand, doesn’t seem to care that much about this part of the business.

They left the server exposed

Anurag Sen, a cybersecurity researcher, noticed that JusTalk’s database on a Huawei server in China had been exposed for months. Discovering the vulnerability in early June, Sen observed that even at that time, new information was recorded in the database. This database is quite large and contains data that is not encrypted in any way. So much so that anyone who wants to access the data has to open a browser on their computer and then type the server’s IP address into the search bar.

Moreover, the information on the server is also very sensitive: many sensitive information such as call dates, online locations, online hours, calls, calling numbers, dialed numbers, messages are among this data. The database is hundreds of GB in size and it is not known exactly how many people’s data was exposed. It is stated that the application has around 20 million users. In addition, 1 million children use the JusTalk Kids version.

It is stated that JusTalk shut down the server after Sen revealed the situation. The interesting thing is that it seems that someone who discovered this vulnerability before asked for a ransom from JusTalk. It is unclear whether this person received the ransom. JusTalk did not make a statement on the subject.

Comments
Leave a Comment

Details
324 read
okunma3722
0 comments