Aptoide data breach [not a question]

asked 2020-04-19 12:59:01 +0200

this post is marked as community wiki

This post is a wiki. Anyone with karma >75 is welcome to improve it.

updated 2020-04-21 01:44:28 +0200

cemoi71 gravatar image

Via: https://haveibeenpwned.com/

In April 2020, the independent Android app store Aptoide suffered a data breach. The incident resulted in the exposure of 20M customer records which were subsequently shared online via a popular hacking forum. Impacted data included email and IP addresses, names, IP addresses and passwords stored as SHA-1 hashes without a salt.

This seems to only apply to those users who were signed up to Aptoide, which was not a requirement to use the Store app (which was replaced with a fake one due to possibly separate incident). More details from a post by ZDNet who first reported the breach: https://www.zdnet.com/article/details-of-20-million-aptoide-app-store-users-leaked-on-hacking-forum/

edit retag flag offensive reopen delete

The question has been closed for the following reason "not a real question" by coderus
close date 2020-04-19 12:59:12.688403

Comments

Not seeing that for my account, so I guess those stolen customer records were for users that were signed up to Aptoide services, and the fake store app wasn't involved in the data collection?

zagrimsan ( 2020-04-20 07:07:41 +0200 )edit

thx for bringing it on topic. i don't think that this theme is off topic as long as sfos allowed to play with android apps. especially with aptoide. change pwd is really recommanded

cemoi71 ( 2020-04-21 01:42:34 +0200 )edit

@zagrimsan good question, don't know. and don't know how deep such an app may collect data. i find not really that the thread is closed. But that's indeed not a question. maybe it should be reformulated and let it open for discussions ...

cemoi71 ( 2020-04-21 01:50:26 +0200 )edit

@cemoi71 I guess it might be possible for an malicious Android app to collect data the Android subsystem given there is a known vulnerability in Android which allows such. But I wouldn't worry of any data outside of the Android subsystem as the Android setup with SFOS is such a non-standard niche that it's very unlikely that anyone is trying for a sandbox escape (from Android to SFOS side). That being said, I'm no infosec pro, and it's wise to be wary in these matters.

zagrimsan ( 2020-04-26 11:51:00 +0200 )edit