icon bookmark-bicon bookmarkicon cameraicon checkicon chevron downicon chevron lefticon chevron righticon chevron upicon closeicon v-compressicon downloadicon editicon v-expandicon fbicon fileicon filtericon flag ruicon full chevron downicon full chevron lefticon full chevron righticon full chevron upicon gpicon insicon mailicon moveicon-musicicon mutedicon nomutedicon okicon v-pauseicon v-playicon searchicon shareicon sign inicon sign upicon stepbackicon stepforicon swipe downicon tagicon tagsicon tgicon trashicon twicon vkicon yticon wticon fm
11 Nov, 2015 15:15

AppStore not so safe? Instagram client shares 500k user passwords

AppStore not so safe? Instagram client shares 500k user passwords

InstaAgent, the Instagram client that topped free-downloads in 15 countries, carried malware that distributed Apple users’ passwords and photos.

Half a million Apple customers were exposed before the issue was discovered. 

InstaAgent allowed users see who views their Instagram profile. When installed, it asked for Instagram usernames and passwords.

Developers at German company Peppersoft discovered login credentials were being stored UNENCRYPTED in the app and uploaded to a third party server.

The news broke Tuesday when German app company Peppersoft found issues with InstaAgent code. The client has since been pulled from Google Play and the AppStore.

The InstaAgent debacle comes a month after Apple had to kill 100’s of Apps it was selling over malware breaches caused by compromised developer tool kit.

READ MORE: Malware infects hundreds of apps in Apple’s official store

Podcasts
0:00
25:24
0:00
26:44