+ Reply
Results 1 to 6 of 6

Your favorite Apple, iPhone, iPad, iOS, Jailbreak, and Cydia site.

Thread: Viber's Apple App Store Description Defaced by Hackers

is a discussion within the

iPhone News

forums, a part of the

General iPhone

  1. #1
    MMi Staff Writer Akshay Masand's Avatar
    Join Date
    Sep 2011
    New York City
    Thanked 103 Times in 89 Posts

    Default Viber's Apple App Store Description Defaced by Hackers

    This past week, the popular messenger Viber was hacked by the Syrian Electronic Army and the Support page was defaced as well with the message saying, “The Israeli-based – Viber is spying and tracking you.” It has recently been discovered that Viber’s Apple App Store description has been defaced as well, this time with a modified description reading “We created this app to spy on you, PLEASE DOWNLOAD IT!”

    It isn’t quite clear if the hack was also performed by the Syrian Electronic Army or not but it’s possible that hackers may have gained access to other various developer-facing functions. The company responded after a previous attack stating that one of its employee’s fell victim to a phishing attack and attackers could gain access to a customer support panel and support administration system, insisting that no sensitive user data had been exposed. The company released the following statement to the public:

    A few days ago a “hacker” was able to gain access to a couple of Viber.com email accounts via a phishing attack. This has since been fixed.

    Data they recovered allowed them to deface our support site and also gain access to our iTunes Connect account (App Store) at a level that allowed them to change the description text of our app – which they did a few days ago around the same time as the original defacement. We noticed this within minutes, fixed the metadata and removed this user (in fact, all users but one) from our iTunes Connect account.

    Unfortunately, on Saturday this happened again. Upon further investigation we realized this is a security issue in iTunes Connect. It seems that when you remove a user, if the user is logged in, then the user stays logged in. We hope Apple fixes this issue soon, as currently we have no way to permanently disconnect this user from our iTunes Connect. We have reached out to Apple regarding this issue and are waiting on their response.

    At this point, we want to reassure users, that this has no impact on the security of the Viber App, Viber System, our databases, user information, etc. It’s merely an unfortunate nuisance.
    We’ll have to see if the company has shaped up and secured itself from future attacks.

    Source: The Hacker News

    Twitter: @AkshayMasand

  2. #2
    My iPhone is a Part of Me PokemonDesigner's Avatar
    Join Date
    Dec 2010
    Thanked 54 Times in 38 Posts

    That is awesome. This is why I don't download apps like this.

  3. #3
    Green Apple
    Join Date
    Aug 2009
    Thanked 5 Times in 3 Posts

    Viber does spy on you though. It's true lol

  4. #4
    iPhone? More like MyPhone HovikGas's Avatar
    Join Date
    Mar 2008
    Berkeley, CA
    Thanked 8 Times in 8 Posts

    Quote Originally Posted by micro_master View Post
    Viber does spy on you though. It's true lol
    Along the lines of all the NSA/PRISM stuff that's been in the news lately, or just them spying on us for their own shits and giggles?

  5. #5
    iPhone? More like MyPhone Reeiiko's Avatar
    Join Date
    Jun 2012
    Thanked 13 Times in 8 Posts

    Viber devs falling for phishing attacks..

  6. The Following User Says Thank You to Reeiiko For This Useful Post:

    slim.jim (07-29-2013)

  7. #6
    My iPhone is a Part of Me slim.jim's Avatar
    Join Date
    Apr 2009
    Maryland, US
    Thanked 116 Times in 92 Posts

    Quote Originally Posted by Reeiiko View Post
    Viber devs falling for phishing attacks..

  8. The Following User Says Thank You to slim.jim For This Useful Post:

    *T* (07-29-2013)

Posting Permissions
  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts