The video and photo flow of colors CEO Bill Nguyen, which safety researcher Chris Wysopal . [+] accessed in moments by spoofing their iPad’s location.
The highly hyped, highly funded, and highly public iOS and Android social media app that launched last week, now would be a good time to ratchet your creep-o-meter up another notch or two for anyone sketched out by the privacy implications of Color.
Within hours of colors’s launch final Thursday, safety researcher and Veracode technology that is chief Chris Wysopal published on Twitter by using “trivial geolocation spoofing” the verification style of colors is “broken.”
Within the week-end, he put that concept towards the test. Using a jailbroken iPad and a software called FakeLocation, Wysopal surely could set their unit’s location to around the globe. Launching colors a brief minute later on, he discovered, as predicted, he could see all of the pictures of every individual at that location. “This only took about 5 minutes to download the FakeLocation application and decide to try a locations that are few we figured there is early adopters who like trying out of the latest apps,” Wysopal penned in my experience in a message. “No hacking involved.”
Wysopal is situated in nyc, but he sent me pictures he grabbed by hopping between Harvard, MIT, NYU, after which to colors’s head office in Palo Alto, Ca, where he accessed the picture and video clip flow of colors’s leader Bill Nguyen.