mHealth Apps Expose Millions to Cyberattacks
#1
Information 
Quote:Some 23 million mobile health (mHealth) application users are exposed to application programming interface (API) attacks that could expose sensitive information, according to researchers.
 
Generally speaking, APIs are an intermediary between applications that defines how they can talk to one another and allowing them to swap information. Researcher Alissa Knight with Approov tried to break into the APIs of 30 different mHealth app vendors, with the agreement she wouldn’t ID the vulnerable ones. Turns out, they were all vulnerable to one degree or another.
 
The average number of downloads for each app tested was 772,619.

According to the resulting report from Approov, out of 30 popular mHealth apps analyzed, 77 percent of them contained hardcoded API keys, which would allow an attacker to intercept that exchange of information — some of which don’t expire. Seven percent of these belonged to third-party payment processors that explicitly warn against hard-coding their secret keys in plain text.

Read more: https://threatpost.com/mhealth-apps-mill...ks/163966/
[-] The following 1 user says Thank You to silversurfer for this post:
  • harlan4096
Reply


Forum Jump:


Users browsing this thread: 1 Guest(s)
[-]
Welcome
You have to register before you can post on our site.

Username/Email:


Password:





[-]
Recent Posts
Mozilla Firefox Browser 152.0.5
Mozilla Firefox Br...harlan4096 — 10:11
HWiNFO v8.48
HWiNFO v8.48 R...harlan4096 — 10:10
AdGuard for Mac 2.19
AdGuard for Mac 2....harlan4096 — 10:08
AnyViewer 5.8.0 for Windows
AnyViewer 5.8.0 fo...harlan4096 — 10:05
Android Security Bulletin—July 2026
Android Security B...harlan4096 — 10:04

[-]
Birthdays
Today's Birthdays
avatar (48)ConradRoand
Upcoming Birthdays
avatar (46)RidgeDimb
avatar (37)ipumaqar
avatar (51)tanliorsPeri
avatar (43)lapedDow
avatar (49)rituabew
avatar (37)omyjul
avatar (41)papedDow
avatar (50)ArnoldFum
avatar (38)yfaza
avatar (49)Kevensi
avatar (39)boineDon
avatar (51)spoofTum
avatar (50)WillieVot
avatar (40)Grompelbawn
avatar (41)vkseogaF
avatar (37)usogy
avatar (40)ywixazok
avatar (38)ixoqe
avatar (36)pa.OpenTran

[-]
Online Staff
There are no staff members currently online.

>