amazon, android, camera, ring, video, vulnerability, amazon, android

Amazon has fixed a high-severity vulnerability in the Amazon Ring app for Android that could have allowed hackers to download customers’ saved camera recordings.

The vulnerability was discovered by security researchers at application security testing company Checkmarx, who found and disclosed the vulnerability to Amazon on May 1st, 2022. Amazon fixed the bug shortly after it was disclosed.

As the Ring Android app has over 10 million downloads and is used by people worldwide, the ability to access a customer’s saved camera recordings could have allowed a wide range of malicious behavior, ranging from extortion to data theft.

Exploiting the Ring Android app

When analyzing the Ring Android app, Checkmarx found that the app was exposing an ‘activity’ that could be launched by any other app installed on the Android device.

An Android’ activity’ is a program component that displays a screen that users can interact with to perform a particular action. When creating an Android app, it is possible to expose that activity to other installed apps by adding it to the app’s manifest file.

When examining the Ring Android app, Checkmarx found that the ‘com.ringapp/com.ring.nh.deeplink.DeepLinkActivity’ activity was exposed in the app’s manifest, allowing any other install app to launch it.

“This activity would accept, load, and execute web content from any server, as long as the Intent’s destination URI contained the string “/better-neighborhoods/”,” explained a report by Checkmarx shared with BleepingComputer before publishing.

This meant that they could launch the activity and direct it to an attacker-controlled web server to interact with the activity. However, only webpages on the ring.com or a2z.com domains could interact with the activity.

The Checkmarx researchers bypassed this restriction by finding an XSS vulnerability on the https://cyberchef.schlarpc.people.a2z.com/ URL, which allowed them to interact with the exposed activity.

Using this XSS vulnerability, the researchers could now steal a login cookie using an authentication token and hardware ID for the customer’s account through Ring APIs that are now accessible.

amazon, android, camera, ring, video, vulnerability, amazon, android

Exploiting the XSS vulnerability Source: Checkmarx

Armed with the now stolen cookie, the researchers could steal personal information from the customer’s account.

“With this cookie, it was then possible to use Ring’s APIs to extract the customer’s personal data, including full name, email, and phone number, and their Ring device’s data, including geolocation, address, and recordings.” – Checkmarx.

Now that the researchers had created a working attack chain, the researchers could have exploited the vulnerability by creating and publishing a malicious app on Google Play or another site.

Once a user was tricked into installing the app, it would execute the attack and send the attackers the Ring customer’s authentication cookies.

Analyzing videos with machine learning

However, as a threat actor, what could you do with the massive number of videos that could suddenly be in your possession by exploiting this vulnerability?

Checkmarx found that they could use the Amazon Rekognition service, an image and video analysis service, to sift through the videos to find ones of interest.

Using machine learning, the service could find videos of celebrities, documents containing certain words, or even a password carelessly scribbled on a post-it note stuck to a monitor.

This data could then be relayed back to the threat actor, who could use it for extortion, network intrusion, or simply to be a voyeur.

The good news is that Amazon responded quickly to Checkmarx’s bug report and deployed a fix.

“It was a pleasure to collaborate so effectively with the Amazon team, who took ownership and were professional through the disclosure and remediation process,” concluded the Checkmarx report.

To demonstrate the vulnerability in the Ring Android app and how threat actors could use it to find sensitive videos, Checkmarx shared the following video with BleepingComputer.

NEWS RELATED

How to Forward a Text Message on Android

dennizn/Shutterstock.com Need to pass a message along? On Android, forwarding a text message you’ve received from someone to another phone number is as easy as choosing the message and selecting an option. Here’s how. Note: The exact steps to forward a message will vary slightly depending on your phone ...

View more: How to Forward a Text Message on Android

Pixel Tablet Leak Reveals Possible Size and Storage Specs

Google At the I/O 2022 conference back in May, Google announced the Pixel Tablet alongside its upcoming Pixel 7 and 7 Pro smartphones. And now, a leak reveals some of the details we can expect to see in the new device. In a report published through 91Mobiles, leaker Kuba Wojciechowski provides ...

View more: Pixel Tablet Leak Reveals Possible Size and Storage Specs

Presidents Cup live stream: how to watch USA vs International golf online from anywhere now, TV schedule – day four

A stunning day three performance has the Internationals right back into contention at the 2022 Presidents Cup. They come into today’s day four play at Quail Hollow trailing 11-7 to the United States. Can Trevor Immelman’s team claim what would be only their second win in the contest or will ...

View more: Presidents Cup live stream: how to watch USA vs International golf online from anywhere now, TV schedule – day four

OnePlus 10T receives OxygenOS update; No signal of Android 13

In a surprising twist of fates, OnePlus has rolled out the stable Android 13 update for the OnePlus 10 Pro. The company’s highest model for 2022 is getting the stable OxygenOS 13 update. However, at the first glance, it’s only reaching those in the Open Beta channel. Anyway, it’s just ...

View more: OnePlus 10T receives OxygenOS update; No signal of Android 13

¿Cómo firmar tus documentos o fotos desde tu teléfono y totalmente gratis?

¿Cómo firmar tus documentos o fotos desde tu teléfono y totalmente gratis? Hasta hace algunos años, si necesitabas firmar un documento para enviarlo por la red, solo era posible si lo imprimías, lo escaneabas para digitalizarlo y luego lo mandabas por correo electrónico. No obstante, en la actualidad, gracias ...

View more: ¿Cómo firmar tus documentos o fotos desde tu teléfono y totalmente gratis?

Verbotene Beziehung! Celtics-Coach von Kamera an Türklingel überführt

Ime Udoka (Boston Celtics) München/Boston – Celtics-Coach Ime Udoka wurde offenbar eine Kamera an einer Türklingel zum Verhängnis. Der 45-Jährige führte nämlich eine intime Beziehung zu einer Mitarbeiterin der Franchise und verstieß damit gegen grundlegende Richtlinien des Vereins. Dem TV-Moderator “Kevin Frazier” von “Entertainment Tonight” bestätigten nun angeblich mehrere ...

View more: Verbotene Beziehung! Celtics-Coach von Kamera an Türklingel überführt

Saiba como consultar local de votação para o dia das eleições

Saiba como consultar local de votação para o dia das eleições No dia 2 de outubro de 2022, 1º turno das eleições, mais de 156 milhões de eleitores estarão aptos a comparecer às urnas para eleger o presidente da República, governadores, senadores e deputados federais, estaduais e distritais. Faltando ...

View more: Saiba como consultar local de votação para o dia das eleições

WM-Prämien fix: Üppige Belohnung für Nationalspieler

Bei Titelgewinn: DFB-Spieler erhalten 400.000 Euro London – Die deutsche Fußball-Nationalmannschaft würde für den Gewinn des WM-Titels in Katar üppig belohnt werden. Sollte Kapitän Manuel Neuer am 18. Dezember in Doha den Pokal in die Höhe recken, erhält jeder Spieler 400.000 Euro. Diese Prämienregelung gab der Deutsche Fußball-Bund (DFB) ...

View more: WM-Prämien fix: Üppige Belohnung für Nationalspieler

Firewall vs. antivirus: What’s the difference and do you need both?

Android: los mejores juegos móviles retro para tu celular este 2022

How to Remove Recommendations on Amazon Fire Tablets

Samsung Galaxy S22 Ultra VS iPhone 14 Pro Max, Apple Still Far Behind Samsung

The Pixel Watch is tipped to launch alongside Google Photos watch faces

How to Check Where My Discord Account is Logged in

15 productos por menos de 299 pesos en Amazon México para aprovechar el envío gratis de Amazon Prime

Download Moto Razr 2022 Wallpapers (Full HD+ Resolution)

How to Turn On the Flashlight on Android

今、高コスパでデュアルSIMを使う組み合わせをeSIMも含めて考えた

Programování elektroniky: Jak zveřejnit data z vlastních čidel na internetu a s hezkými grafy

Ex-Bayern-Star legt sich mit iranischen Machthabern an

OTHER NEWS

Breaking thailand news, thai news, thailand news Verified News Story Network