Skip to main content

A Security Researcher Has Found That Anonymous Feedback App Sarahah Keeps Uploading Your Email And Phone Contacts To Its Servers

Image
By

Earlier this month, viral anonymous app Sarahah took the internet by storm when its popularity rose exponentially. The teenagers, as well as adults, were engrossed in this Sarahah-mania to receive “anonymous” feedback from their friends and co-workers.

While Sarahah app was already criticized for its possible aid in cyber bullying incidents, a new revelation has been made by a senior security analyst. As reported by The Intercept, Zachary Julian found out that Sarahah is collecting the private information of users.
As soon as you launch the app for the first time, Sarahah immediately uploads all the phone numbers and email addresses in your phone book. While it asks for user-permission for the access, it doesn’t disclose the upload act.
Moreover, Sarahah doesn’t even make any apparent and functional use of the uploaded data. Julian discovered the same when he installed Sarahah app on his Android smartphone, which was a Samsung Galaxy S5 running Android 5.1.1. Using BURP Suite, he was able to intercept the incoming and outgoing internet traffic.
Sarahah performs this sneaky action on iOS devices as well. It’s worth noting that if a person doesn’t use the app for some time, it shares the contacts again.
On iOS, the app says, “the app needs to access your contacts to show you who has an account in Sarahah.” It doesn’t do so. On Android, the app, in some cases, makes a request to access contacts without giving any reason.
After this revelation, app’s creator, Zain al-Abidin Tawfiq, said that the functionality will be removed in a future update. He further said that the feature was intended for a “find your friends” feature, something that doesn’t exist at the moment. The validity of Tawfiq’s statements is impossible to verify.
While such acts of uploading contacts by applications aren’t uncommon, it’s concerning if that app isn’t making any use of the information. Apart from worrying about the security of data on your device, you also need to worry about the integrity of the company who has your data.
Did you find this story on viral Sarahah app useful? Don’t forget to share your views and concerns with us.
Labels:

Comments

Post a Comment

Follow Us

WHAT'S HOT

Best Gaming Linux Distros You Need To Try In 2017

By
Gaming on Linux scene is improving each year with better hardware support and increasing support from game developers. Apart from established distros like Ubuntu and Arch Linux, gamers are using gaming Linux distros like Steam OS to get a better experience. The other It’s gaming operating systems are Sparky Linux – Gameover
Post a Comment
Continue Reading »

Learn How To Activate iOS 11 Dark Mode

By
Apart from all the major iOS 11 features and changes, there are some hidden and minor features as well. In this release, Apple has included a feature named Smart Invert Colors, which is the closest you can get while looking for an iOS 11 dark mode.
Post a Comment
Continue Reading »

Microsoft Set To Put Fingerprint Sensor In Keyboard Keys

By
According to a new patent titled “ Keyset Fingerprint Sensor ,” Microsoft might be working to integrate the fingerprint sensor in keyboard keys. The fingerprint recognition might be done
Post a Comment
Continue Reading »

Latest Linux Distribution Releases List

By
This list is prepared with the inputs from different Linux distro developers and the official release notes. But, before going ahead and taking a look at latest releases, don’t forget to check out our useful lists of best Linux distros of 2017: Best Linux Distro For Beginners Best Linux Distro For Gamers Best Lightweight Linux Distros Best Operating Systems For Ethical Hacking Linux Distribution Releases (July 2017) Linux Mint 18.2 Release Date: July 2nd, 2017 You can read about Linux Mint 18.2 Sonya in detail  on 9jabreezeland . 4MLinux 22.0 Release Date: July 1st, 2017 4MLinux 22.0 is the latest stable release. It comes loaded with LibreOffice 5.4.0.1, GIMP 2.8.22, Dropbox 28.4.14, Firefox 54.0, Chromium 59.0.3071.86, etc. The biggest change comes with 4MLinux Server, which is a lightweight and fast server Linux distro. You can read more about 4MLinux 22.0  here . Netrunner 17.06 Release Date: July 1st, 2017 Netrunner 17.06, codenamed Daed...
Post a Comment
Read more