"GST Invoice Billing Inventory Exposes Sensitive Data to Threat Actors"

The popular GST Invoice Billing Inventory (previously known as Book Keeper) app with more than 1 million downloads has left a database open, exposing sensitive personal and corporate data. The app for small and midsize businesses (SMBs) is one of thousands of apps on Google Play that have sensitive data hard-coded into the client side. This means that threat actors can access Application Programming Interface (API) keys, Google Storage buckets, and unprotected databases. They can exploit that information by analyzing publicly available information about apps. This article continues to discuss the exposure of personal and corporate data by the GST Invoice Billing Inventory app.

Cybernews reports "GST Invoice Billing Inventory Exposes Sensitive Data to Threat Actors"

Submitted by grigby1

Submitted by Gregory Rigby on