If you use the keyboard app developed by Ai.Type, your personal information μάλλον έχουν διαρρεύσει, καθώς ερευνητές ασφαλείας ανακάλυψαν ότι η εταιρεία συλλέγει σιωπηρά data and stores them in a MongoDB database.
Security firm Kromtech estimates that sensitive data belonging to around 31 million users is included in this database, while entries were found to prove that the keyboard app recorded almost every keystroke, whether it was plain text or codes access.
While the app developer says it does not collect information from password fields and that all data is encrypted, ZDNet reveals that the database discovered by Kromtech included everything from full usernames, email addresses, geographic location, device, model, IMEI, and Android versions. Also included is more personal information collected from social media, such as birth dates, gender, profile photos, contacts and passwords.
Η Kromtech says the database is 577 GB and was exposed on the Internet. The database was freely available to anyone with an Internet connection, and contains at least 31.293.959 files.
There are 6.435.813 entries with information gathered from contact lists, including phone numbers and names. The security company estimates that the keyboard application has stored more than 373 millions of records on the servers of the company that developed it.
In most cases, the applications third-party keyboards require full access to Android data, and Google OS warns that this could cause problems.
Ai.Type's keyboard app is also available for iPhone and also requires full access, but it's currently unclear if they leaked information from Apple device users or only those using Android.