"QuickBlox API Vulnerabilities Open Video, Chat Users to Data Theft"

After researching QuickBlox's Software Development Kit (SDK) and Application Programming Interface (API), Team 82 and Check Point Research discovered critical vulnerabilities that put millions of users' personal data at risk. The chat and video calling platform QuickBlox is used in various fields, including the medical and financial sectors. Team 82 and Check Point Research were the first to develop multiple proof-of-concept (PoC) exploits for applications running the API as part of their research into the platform's vulnerabilities. The teams also showed examples of how threat actors may access information about QuickBlox users by using secret tokens and passwords in the platform's architecture. This article continues to discuss the QuickBlox API vulnerabilities.

Dark Reading reports "QuickBlox API Vulnerabilities Open Video, Chat Users to Data Theft"