In the News
Security vulnerabilities are not uncommon, but not all result in data exposure and damage. In Airmail issues fix for security flaw that could let hackers read your email, Nick Slatt at the Verge discusses a potential security flaw in the Airmail email application that left users’ accounts susceptible to being breached. Slatt explains that this security flaw could have allowed malicious attackers to utilize a phishing scheme to read private messaged and gain access to email databases. Slatt states that the security flaw was fixed and the app updated even though no hacks of user data occurred.
Our Take
Although no user data was exposed, the existence of a vulnerability in such a widely used application is worrisome. By admitting to the vulnerability and taking proactive measures to mitigate the potential security flaw before damage was done, Airmail showed that it is working to ensure a safe environment for user data. While Airmail may have been able to catch the vulnerability before it was actively exploited, this is not always the case, and many security flaws do lead to the exposure of user data. It is important for companies such as Airmail to identify the source of this security flaw and take active steps to make sure that similar flaws do not appear in the future.
Recommendations
How can you protect your personal messages and data when using email and messaging services?
- Understand the risks of putting your personal information into the world, and only share what you have to
- Periodically check your applications for updates
- Use encryption on your emails if you are discussing personal information
- Utilize additional security/privacy measures and settings on apps, accounts, and platforms whenever possible
- Refrain from choosing passwords that contain a simple word or phrase–create strong passwords and change them periodically – the longer the better.
- Stay up to date on news covering recent breaches to see if you may have been affected