Apple iPhone 16 Event - September 9
livestream
Apple iPhone 16 Event - September 9
00 days
00 hrs
00 mins
Countdown to Glowtime and the iPhone 16's debut!

Security breach on Clubhouse app

By
1comment
Google News Follow
Follow us on Google News
iOS Apps
Security breach on Clubhouse app
Clubhouse, an app that provides audio-only chatrooms for free, has gone viral in the App Store over the last few weeks. It is currently only available for Apple users, although preparations to launch the Android version of the application are underway. With nearly ten million downloads on Apple devices alone, Clubhouse has even caught Mark Zuckerberg's attention, as Facebook has already begun to develop a similar kind of app. 

However, some concerning security flaws have just been exposed, potentially compromising the privacy of users' streams and identities. Clubhouse policies forbid anyone from recording conversations that take place on the app, and promise complete privacy—going so far as to claim that user data was inaccessible even to state-sponsored hackers. Yet this past weekend, a user (since permanently banned) was discovered streaming audio feeds from multiple chatrooms to his website. This is not a function of the app and should not have been possible. 

The revelation led to deeper investigation into Clubhouse by Stanford cyber-security researchers, who further uncovered that each user's ID number as well as chatroom IDs were being transmitted in plaintext—without any encryption whatsoever. What's more, Clubhouse IDs could be connected to user profiles and identities traced.

This opens a whole Pandora's box of concerns. Because Clubhouse's back-end infrastructure provider (Agora) is located in Shanghai, the incident poses the question of whether the Chinese government could gain access to the raw audio files and confidential information. With Chinese citizens comprising a significant percentage of the app's global users, the data is often routed through Chinese servers. And unless the app's security is quickly enhanced and IDs encrypted, there may be worse cases of data breach coming.

Clubhouse is currently working with Stanford Internet Observatory to take measures and enhance its security. In any case, SIO's chief technology officer warns that due to what we know, users should consider Clubhouse chats "semi-public."


Loading Comments...

Popular stories

Tim Cook’s strategy after Steve Jobs’ passing: senior employees who barely work
Tim Cook’s strategy after Steve Jobs’ passing: senior employees who barely work
T-Mobile's hot new promo will save you a fortune in the long run with little to no effort
T-Mobile's hot new promo will save you a fortune in the long run with little to no effort
T-Mobile accidentally reveals upcoming iPhone 16 On Us promo
T-Mobile accidentally reveals upcoming iPhone 16 On Us promo
T-Mobile's secret elite team performs another miracle
T-Mobile's secret elite team performs another miracle
T-Mobile will only have a year of exclusive Starlink satellite access
T-Mobile will only have a year of exclusive Starlink satellite access
Heavily discounted on Amazon, the Bose QuietComfort headphones continue to fly off the shelves
Heavily discounted on Amazon, the Bose QuietComfort headphones continue to fly off the shelves

Latest News

Insider explains why there won't be an iPhone supercycle this year
Insider explains why there won't be an iPhone supercycle this year
The no-compromise Pixel 8 Pro has never been cheaper at $375 off
The no-compromise Pixel 8 Pro has never been cheaper at $375 off
Macs and iPads might not be making the cut at tomorrow’s Apple event as AI takes center stage
Macs and iPads might not be making the cut at tomorrow’s Apple event as AI takes center stage
Save on the premium Jabra Elite 10 earbuds with this deal and enjoy great sound with Dolby Atmos for less
Save on the premium Jabra Elite 10 earbuds with this deal and enjoy great sound with Dolby Atmos for less
You can’t imagine how giant the first iPhone was
You can’t imagine how giant the first iPhone was
The EU isn’t the only major region not getting Apple Intelligence
The EU isn’t the only major region not getting Apple Intelligence
FCC OKs Cingular\'s purchase of AT&T Wireless
  翻译: