Fresh from the Pan: Huawei launching the P30 series today and a security app that screwed up

Fresh from the Pan: Huawei launching the P30 series today and a security app that screwed up

Within the next two days, Apple will be launching “It’s Showtime” in China – dubbed as the “biggest strategy-change since the iPhone in 2007”. Basically, it’s a new era for the brand. Rumor has it that the brand will also be having a huge sale. So, if you’re an iPhone brand and excited about this “new thing” keep yourself updated on their website.

So, while Apple is making its move, which is not even reporting device sales for a very long time, the Android market is also taking a step for the next big thing.

Huawei is launching the P30 series

The Chinese manufacturer, Huawei, is still concentrating on devices. The anticipated Huawei P30 and P30 Pro is launching today, March 26, in Paris at 2 PM local time.

There have been several leaks exposed about the phone prior to its launch. The leaks include what looks like the camera focus will be on a quad-camera setup, with P30 having a periscope telephoto lens, delivering 10x hybrid zoom, and a night-mode for low-light environments. It also shows a 6-inch display, a waterdrop notch, in-display fingerprint sensor, new radiating colors, and a headphone jack on (at least on the P30).

More details of the P30 and P30 Pro will be revealed during the launch. So, stay tuned.

Family Locator – Family security app that screwed up

Family Locator is an app that, well, locates your family. The app, built by an Australian-based software house React Apps, allows families to track each other in real-time and sends geofenced alerts to send a notification when a family member enters or leaves a certain location.

Apparently, the app faced a major problem recently, which exposed the location of thousands of families using the app. It was found out that the app was leaking real-time locations of about 238,000 users for weeks after the developer left the server exposed without a password. A security researcher and member of the GDI Foundation Sanyam Jain found the database and reported the findings to TechCrunch.

According to the interview, each account record contained a user’s name, email address, profile photo, and their plaintext passwords. Each account also kept a record of their own and other family members’ real-time locations precise to just a few feet. Any user who had a geofence set up also had those coordinates stored in the database. None of the data was encrypted.

TechCrunch verified the report and the contents of the database by using the app and setting up an account with a dummy email. Within seconds, the dummy account’s real-time location displayed its exact coordinates on the database.

To address the leak, TechCrunch reached out to React Apps, but to no avail. Turns out the company’s website had no contact information and has a privacy-enabled WHOIS record, masking the owner’s email address. The company’s owner, Sandip Mann Singh, had no contact information as well according to the Australian Securities & Investments Commission.

So, failing to contact the owner of the website, Microsoft, which hosted the database, pulled the database offline.

All parties are still waiting for Singh to acknowledge the major leak.



Leave a Reply