Daycare monitoring apps are ‘dangerously insecure,’ report finds

Photo by Amelia Holowaty Krales / The Verge Popular daycare and childcare communications apps are “dangerously insecure,” according to newly published research, exposing children and parents to the risk of data breaches with lax security settings and permissive or outright misleading privacy policies. The details come from a new report from the Electronic Frontier Foundation (EFF), which published the results of a months-long research project on Tuesday. The research, conducted by EFF’s director of engineering Alexis Hancock, found that popular apps like Brightwheel, HiMama, and Tadpoles lacked two-factor authentication (2FA), meaning that any malicious actor who was able to obtain a user’s password could log in remotely. Further analysis of application code revealed a number of... Continue reading…