A popular parental control application called Kidsecurity has suffered a data leak, exposing the personal information of one million users to attackers. The application, which has been downloaded over a million times from Google Play, offers parents tools to track their children’s location, listen to sound from their devices, and set device usage limits.
On September 16, researchers discovered that the Kidsecurity application had not been properly configured for storage on Elasticsearch and Logstash platforms, which are typically used to analyze log data and events. As a result of this misconfiguration, user activity logs were left publicly accessible on the internet.
Experts estimate that the data leak has affected more than 300 million records, which include 21,000 phone numbers, 31,000 email addresses, and partial information on payment cards such as the first six and last four digits, card validity, and the issuing bank.
Furthermore, there are indications that the attackers took advantage of a vulnerability. The Kidsecurity application server was targeted by the Readme Botnet, a botnet known for leaving ransom notes on compromised systems. However, there is no information yet regarding a specific ransom demand related to this incident.