All the data are uploaded to https://droid.securecloudworks.com/api/ which is classified as a #Malware with a score of 3/68 on #VirusTotal
2/10pic.twitter.com/UmWpYmCFNT
You can add location information to your Tweets, such as your city or precise location, from the web and via third-party applications. You always have the option to delete your Tweet location history. Learn more
All the data are uploaded to https://droid.securecloudworks.com/api/ which is classified as a #Malware with a score of 3/68 on #VirusTotal
2/10pic.twitter.com/UmWpYmCFNT
They tried to used http://domainsbyproxy.com to hide their identity... 3/10pic.twitter.com/1V8lGsav3I
Like all malware developers they called their package http://com.android ... 4/10pic.twitter.com/CeiIYJlN7N
If the teenager try to uninstall the app, they lie to him and show this message: "Sorry, this is a critical droid app and cannot be uninstalled without compromising your device!" 5/10pic.twitter.com/BDcatZyeaE
This app exfiltrate contacts, browser history, sms and more 6/10
A @Teensafe manager probably asked to encrypt the data before sending to their server. The intern did it and he stored the salt in the ressource file...
Do I have to explain why this is sssssssssssooooooooo bad?
7/10pic.twitter.com/q3yeTlDctK
How on Earth a business like this can be legal? @Teensafe you have a sh*tty business. I will give to all your victims all the possible ways to disable your app.
9/10
Journalists: you have a story here. Ask questions. How this thing can be legal? Because they are #teenagers, we can spy on them, they have no rights? I doubt so. cc @zackwhittaker @lorenzoFB
Right bro and really fantastic for u r work
"..TeenSafe left ...servers ...viewable by anyone. ...the database included information such as ...email address ...device unique identifier and plaintext passwords..." Sweet Jesus; I sometimes think that there should be licenses required to do crypto.https://techcrunch.com/2018/05/21/teen-monitoring-app-teensafe-exposes-thousands-of-passwords/ …
I really {app}reciate your work because i think it's important to reveal such abuses of (data-protection) RIGHTS. At least to inform the people
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.