“‘Eavesdropper’ Vulnerability Exposes Millions of Private Conversations”

Security researchers have discovered a vulnerability, which can be exploited by attackers to gain access to millions of user conversations and SMS messages sent by applications that use the Twilio service. The "Eavesdropper" vulnerability arises from the presence of API credentials that have been hardcoded into these applications by developers. These credentials can be extracted by attackers to access call records, audio recordings, text messages, and more. This article further discusses the discovery of this vulnerability, the cause of this flaw, and types of applications that have been affected. 

Bleeping Computer reports "‘Eavesdropper’ Vulnerability Exposes Millions of Private Conversations”