Custom crawler PlayDrone was used by researchers to download and decompile over 880,000 free programs to find thousands of secret tokens that authenticate service to service communication embedded in the source code. Authentication tokens are secret keys used instead of log in credentials by apps that facilitate communication with a third party service, such as Facebook or Twitter clients. The keys are to be shared only between the two services involved in the information exchange and should …
Comments are closed.
