Over 1800 Android and iOS Apps Found Leaking Hard Coded AWS Credentials


According to a research given to The Hacker News by Symantec’s Threat Hunter team, a division of Broadcom Software, “almost three-quarters (77%) of the apps held genuine AWS access tokens providing access to private AWS cloud services.”

A supply chain issue with major ramifications was highlighted by the discovery that slightly more than 50% of the apps used the same AWS tokens as those used in other apps maintained by other developers and businesses. Read More…