Author: Zeljka Zorz HNS Manging Editor/ Posted on 25 August 2014.
The secrets you share on Secret, the popular app that allows people to share messages anonymously within their circle of friends, friends of friends, and publicly, can be easily attributed to you if the attacker knows the email address you used to make an account.
http://www.net-security.org/images/articles/secret-25052014.jpg
The proof-of-concept attack has been devised and performed by white hat hackers Ben Caudill and Bryan Seely, the co-founder and CTO (respectively) of Rhino Security Labs, and it's pretty easy to execute.
They only needed to create seven dummy Secret accounts, delete their entire iPhone's contact lists, add the seven fake e-mail addresses as contacts, and then add the target's email address.
Help Net Security/ Full Article Here/ http://www.net-security.org/secworld.php?id=17291
Be the first to reply!
Reply
Login to the community
No account yet? Create an account
Enter your username or e-mail address. We'll send you an e-mail with instructions to reset your password.