Qatar’s COVID-19 tracker could’ve exposed the data of over 1M users

Who woulda thunk it? It turns out Qatar’s coronavirus contact tracing app, which the country made compulsory to install for residents last week, has glaring security holes. Amnesty‘s Security Labs found a critical vulnerability in the software — dubbed Ehteraz — which would have allowed attackers to obtain tons of highly sensitive personal information, including the name, national ID, health status, and location data of more than 1 million users. Fortunately, the issue has since been patched after Amnesty informed the Qatari government of the potential threat on May 21. The authorities responded promptly, releasing a fix on May 22. “While…

This story continues at The Next Web