{"id":209679,"date":"2022-06-24T13:24:00","date_gmt":"2022-06-24T10:24:00","guid":{"rendered":"https:\/\/howtogeek.inform.com.de\/?p=209679"},"modified":"2022-04-07T11:21:10","modified_gmt":"2022-04-07T08:21:10","slug":"privata-appar-som-delas-paa-fitbit-gallery-skannas-inte-efter-skadlig-kod","status":"publish","type":"post","link":"https:\/\/howtogeek.inform.com.de\/sv\/privata-appar-som-delas-paa-fitbit-gallery-skannas-inte-efter-skadlig-kod\/","title":{"rendered":"Privata appar som delas p\u00e5 Fitbit Gallery skannas inte efter skadlig kod"},"content":{"rendered":"<p>Fitbit <a href=\"https:\/\/redirect.viglink.com\/?key=204a528a336ede4177fff0d84a044482&#038;u=https%3A%2F%2Fgallery.fitbit.com%2F\" target=\"_blank\" rel=\"noopener nofollow\" class=\"external external_icon\">Gallery<\/a> \u00e4r en one-stop shop f\u00f6r godk\u00e4nda Fitbit-appar, som <a href=\"https:\/\/redirect.viglink.com\/?key=204a528a336ede4177fff0d84a044482&#038;u=https%3A%2F%2Fgallery.fitbit.com%2Fdetails\/dc411695-8f1e-4643-9881-b19d053fbc33\" target=\"_blank\" rel=\"noopener nofollow\" class=\"external external_icon\">Spotify<\/a> eller <a href=\"https:\/\/redirect.viglink.com\/?key=204a528a336ede4177fff0d84a044482&#038;u=https%3A%2F%2Fgallery.fitbit.com%2Fdetails\/00001401-0000-4000-8000-000000f17b17\" target=\"_blank\" rel=\"noopener nofollow\" class=\"external external_icon\">Starbucks Card<\/a>. Och medan Fitbit manuellt skannar alla publicerade Galleri-appar efter skadlig programvara, f\u00e5r delbara &quot;privata&quot; appar inte samma behandling. Om n\u00e5gon skickar en e-post till dig en nedladdningsl\u00e4nk f\u00f6r en Fitbit-app, ignorera den!<\/p>\n<p>Fitbit l\u00e5ter utvecklare ladda upp &quot;privata&quot; appar till galleriet f\u00f6r att hj\u00e4lpa till med testning. Tyv\u00e4rr kan alla med en nedladdningsl\u00e4nk installera en privat app. D\u00e5liga sk\u00e5despelare kan dela en privat nedladdningsl\u00e4nk <a href=\"https:\/\/www.bleepingcomputer.com\/news\/security\/fitbit-gallery-can-be-used-to-distribute-malicious-apps\/\" target=\"_blank\" rel=\"noopener nofollow\" class=\"external external_icon\">f\u00f6r att sprida skadlig programvara som samlar in data<\/a>, ett hot som identifierats av Kevin Breen och publicerats av <a href=\"https:\/\/www.bleepingcomputer.com\/news\/security\/fitbit-gallery-can-be-used-to-distribute-malicious-apps\/\" target=\"_blank\" rel=\"noopener nofollow\" class=\"external external_icon\">BleepingComputer<\/a>.<\/p>\n<p>Kevin Breen, hot research director p\u00e5 <a href=\"https:\/\/www.immersivelabs.com\/\" target=\"_blank\" rel=\"noopener nofollow\" class=\"external external_icon\">Immersive Labs<\/a>, laddade upp en skadlig privat app till Galleriet och anv\u00e4nde den f\u00f6r att stj\u00e4la GPS-plats, puls, h\u00f6jd och \u00e5ldersdata fr\u00e5n testenheter. P\u00e5 Android kan den skadliga appen ocks\u00e5 l\u00e4sa alla kalendrar som \u00e4r anslutna till Fitbit. Breen kunde till och med konfigurera appen f\u00f6r att skanna och komma \u00e5t n\u00e4tverksverktyg som routrar och brandv\u00e4ggar, tack vare Fitbits appetch API.<\/p>\n<p>Tack och lov l\u00e4mnade Kevin Breen sin forskning till Fitbit-f\u00f6retaget, som svarade genom att l\u00e4gga till varningar f\u00f6r privata appnedladdningar. Fitbit planerar ocks\u00e5 att v\u00e4lja bort privata appbeh\u00f6righeter som standard, vilket ger anv\u00e4ndarna m\u00f6jlighet att manuellt ge \u00e5tkomst till sin \u00e5lder, kontakter och annan information. Som alltid skannar Fitbit Galleri-appar efter skadlig kod innan de publiceras p\u00e5 den offentliga Galleri-sidan.<\/p>\n<p>K\u00e4lla: Kevin Breen via <a href=\"https:\/\/www.bleepingcomputer.com\/news\/security\/fitbit-gallery-can-be-used-to-distribute-malicious-apps\/\" target=\"_blank\" rel=\"noopener nofollow\" class=\"external external_icon\">BleepingComputer<\/a><\/p>\n<p><div id=\"PostUnique_PostSource\" style=\"padding-top: 50px\">Inspelningsk\u00e4lla:  <a target=\"_blank\" rel=\"noopener nofollow\" href=\"\/\/www.reviewgeek.com\" class=\"external external_icon\">www.reviewgeek.com<\/a><\/div><\/p>\n","protected":false},"excerpt":{"rendered":"<p>Fitbit Gallery \u00e4r en one-stop shop f\u00f6r godk\u00e4nda Fitbit-appar, som Spotify eller Starbucks Card. Och medan Fitbit manuellt skannar alla publicerade Galleri-appar efter skadlig programvara, f\u00e5r delbara &#8221;privata&#8221; appar inte samma behandling. Om n\u00e5gon mailar dig en nedladdningsl\u00e4nk f\u00f6r en Fitbit-app, ignorera den!<\/p>\n","protected":false},"author":1,"featured_media":180526,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":"","_wp_rev_ctl_limit":""},"categories":[],"tags":[],"class_list":["post-209679","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry"],"_links":{"self":[{"href":"https:\/\/howtogeek.inform.com.de\/sv\/wp-json\/wp\/v2\/posts\/209679","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/howtogeek.inform.com.de\/sv\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/howtogeek.inform.com.de\/sv\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/howtogeek.inform.com.de\/sv\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/howtogeek.inform.com.de\/sv\/wp-json\/wp\/v2\/comments?post=209679"}],"version-history":[{"count":0,"href":"https:\/\/howtogeek.inform.com.de\/sv\/wp-json\/wp\/v2\/posts\/209679\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/howtogeek.inform.com.de\/sv\/wp-json\/wp\/v2\/media\/180526"}],"wp:attachment":[{"href":"https:\/\/howtogeek.inform.com.de\/sv\/wp-json\/wp\/v2\/media?parent=209679"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/howtogeek.inform.com.de\/sv\/wp-json\/wp\/v2\/categories?post=209679"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/howtogeek.inform.com.de\/sv\/wp-json\/wp\/v2\/tags?post=209679"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}