Hackers can easily steal passport photos from vulnerable UK Brexit app, report claims
The UK Home Office’s “EU Exit: ID Document Check” application, which allows citizens and their families to apply for the EU Settlement Scheme, is vulnerable to hacking.
This is according to a report by Norwegian cybersecurity company Promon, which specializes in securing apps from hacking attacks.
According to the report, the Brexit app (as it's commonly called) "lacks functionality that prevents malware from reading and stealing sensitive information provided by users, including passport details and photo IDs." Basically the app's not resilient enough to hackers adding malicious elements to it, repackaging it, redistributing it, or injecting malicious code while the app is running.
Promon claims hacking the app could be done by someone with limited technical skills, using commonly available tools.
The researchers point out that they didn't reveal a specific vulnerability; their assessment is based on the app's general lack of resilience against common attacks. They also focused on the Android version of the app; the app is also available on iOS.
The Android version of the Brexit app has been downloaded more than a million times. It asks users to give up sensitive information, including scanning their passports and photographing their faces.
SEE ALSO:Chinese hackers infect carriers to steal SMS messagesThe Financial Times, which first highlighted the issues raised in Promon's report, spoke to a Home Office spokesperson, who said the app is "regularly tested by independent security firms against all known and emerging threats and adheres to industry best practice on security, performance and accessibility."
According to the spokesperson, "over a million people have used the app safely."
(责任编辑:行业动态)
- ·微视频广东:在推进中国式现代化建设中走在前列
- ·Cheong Wa Dae, spy agency show different views over North Korea's ICBM capabilities
- ·Doctor sentenced for sexually assaulting female intern
- ·Extremely realistic Andre the Giant sculpture will make you double take
- ·29 Dive Bars, Saloons, and Taverns Where the Vibe Is Unbeatable
- ·South Korean military eyes new operation plan against N.K. threats
- ·Cat that ingested antifreeze saved by the elixir of life: Vodka
- ·Deportation of 2 NK fishermen was legitimate: Unification Minister
- ·How 3D Game Rendering Works: Texturing
- ·Opposition chief calls for ‘nuclear alliance’ with US to deter N. Korea
- ·Giant dual
- ·'Extraordinary' intl. pressure needed for N. Korea: ex
- ·Elon Musk is so worried about the threat of AI, he wants government to regulate it
- ·Real Madrid claim 36th Spanish title after Girona stun Barca
- ·Tesla Robotaxis aren't coming in August, it seems
- ·海归回雅 英国剑桥大学研究员回川农大任教
- ·开展打击 非法集资宣传活动
- ·开展打击 非法集资宣传活动
- ·14 Heists, Robberies, and Other Great Capers
- ·Elon Musk is so worried about the threat of AI, he wants government to regulate it