Maker of anti-theft app for Android reports database hack

Hackers have managed to access the database of the Android-beveiligingsapp Cerberus. The attackers, however, have only access to know to gain access to usernames and encrypted passwords. It comes to 96.564 accounts.

The company behind the antidiefstall app Cerberus, LSDroid, let in an e-mail to all affected users know that they have another password to have to choose, despite the fact that the passwords are encrypted. The service used SHA-1 for encryption and hashes are some times gesalt. LSDroid declares now soon to migrate to bcrypt. Users can have their password reset via the official website of the app. The hackers have no access to know to access personal data and device information, and e-mail addresses, claims LSDroid.

Google+ gives the company some more information about the incident. A total of 96.564 accounts the data is stolen, and these account holders are obliged LSDroid to the passwords to change after a reset. The attackers have three accounts actually logged in and this account has LSDroid all activity blocked. As far as is known, the managers have the stolen data will not be made public.