Search This Blog

Tuesday, January 27, 2015

Marriott fixes Android app exploit that could expose personal data

Marriott International has fixed an exploit in their Android app, that could expose personal details for customers of the hotel chain, highlighted by a security researcher.
Randy Westergren, a senior software developer with XDA Developers found that the Marriott Android app was checking rewards members’ reservations against a Marriott server without any authentication. As Westergren noted, this meant anyone could “query the reservations of any rewards member by simply specifying the Membership ID.”


Marriott fixes Android app exploit that could expose personal data

No comments:

Post a Comment

Note: Only a member of this blog may post a comment.