Hackers can easily steal passport photos from vulnerable UK Brexit app, report claims
The UK Home Office’s “EU Exit: ID Document Check” application, which allows citizens and their families to apply for the EU Settlement Scheme, is vulnerable to hacking.
This is according to a report by Norwegian cybersecurity company Promon, which specializes in securing apps from hacking attacks.
According to the report, the Brexit app (as it's commonly called) "lacks functionality that prevents malware from reading and stealing sensitive information provided by users, including passport details and photo IDs." Basically the app's not resilient enough to hackers adding malicious elements to it, repackaging it, redistributing it, or injecting malicious code while the app is running.
Promon claims hacking the app could be done by someone with limited technical skills, using commonly available tools.
The researchers point out that they didn't reveal a specific vulnerability; their assessment is based on the app's general lack of resilience against common attacks. They also focused on the Android version of the app; the app is also available on iOS.
The Android version of the Brexit app has been downloaded more than a million times. It asks users to give up sensitive information, including scanning their passports and photographing their faces.
SEE ALSO:Chinese hackers infect carriers to steal SMS messagesThe Financial Times, which first highlighted the issues raised in Promon's report, spoke to a Home Office spokesperson, who said the app is "regularly tested by independent security firms against all known and emerging threats and adheres to industry best practice on security, performance and accessibility."
According to the spokesperson, "over a million people have used the app safely."
(责任编辑:关于我们)
- ·9 Festive Holiday Treats and Where to Find Them
- ·Chennai floods devastate India’s fourth
- ·S. Korea reiterates stance on East Sea naming after Trump mentions Sea of Japan
- ·“乐小萌”在市体育中心等你
- ·Best Labor Day headphones deals: Apple, Bose, Beats, and more on sale
- ·雨城区依山傍水 四户联建农家乐
- ·雅电集团:技能竞赛展风采 比学赶超干劲足
- ·守护粮食安全!农机防灾救灾应急培训进行时
- ·Haider all set for Paralympics Ceremony
- ·Supreme Court assault weapons case: SCOTUS won't hear challenge to ban.
- ·Pressure boost squeezes out more hydrogen from artificial leaves
- ·Something funky is going on with Canada in 'The Handmaid's Tale'
- ·[From the Scene] The first step toward military service: The medical exam
- ·Gene edit summit at National Academy urges caution on CRISPR.
- ·21 Caves That Offer Otherworldly Experiences
- ·[From the Scene] The first step toward military service: The medical exam
- ·芦山县开展农民专业技能培训
- ·修建林区道路 开车直接登顶
- ·实干担当抓落实 多措并举促发展
- ·Cheong Wa Dae cautious about reports of N. Korea's post