New research from Comparitech suggests that common misconfigurations of Google Firebase databases are exposing sensitive information, including passwords, telephone numbers, and chat messages, to anyone who wants to look. I spoke to Diachenko, who confirmed that from the sample that was using Firebase, some 11,730 of those apps were exposing that Firebase database publicly. Recommending that app developers follow the "Security & Rules" guidelines as set out in Google's Firebase documentation should be a no-brainer, but it's not. MORE FROM FORBES How This Chinese Google Hack Has Made Working From Home SaferOK then, this is not a Google Firebase problem, it's a developer problem, right? This means it's not that uncommon for app developers to refer to existing examples of a technology implementation rather than the original documentation itself.

Source: Forbes May 12, 2020 12:11 UTC