The RSA Conference 2014 application downloads a SQLite DB [database] file that is used to populate the visual portions of the app (such as schedules and speaker information) but, for some bizarre reason, it also contains information of every registered user of the application -- including their name, surname, title, employer, and nationality.
The link below has more details:
http://www.cio.com/article/748962/RSA_Conference_Mobile_App_has_Vulnerabilities_Researchers_Say
No comments:
Post a Comment