A recent security report on AI girlfriend and companion apps highlights critical vulnerabilities amid a data exposure incident involving identity protection company Aura. The report by Oversecured reveals that 17 popular Android apps, collectively installed over 150 million times, contain numerous security flaws, including 14 critical vulnerabilities that could jeopardize users’ intimate chat histories. These apps, marketed as AI companions and dating simulators, prompt users to share sensitive information such as sexual orientation and relationship issues. As a result, vulnerabilities like hardcoded cloud credentials and cross-site scripting flaws could potentially expose users to significant risks. The report underscores the need for regulatory action focusing on app security, as existing investigations by the Federal Trade Commission primarily address privacy concerns for minors rather than data protection. The Aura breach, involving 900,000 records, amplifies worries over the safety of personal information shared with AI-driven platforms.
Source link
