Personally, if I was an affected user, I would want to do much more than that. In its blog post Edison says that it has released a new update to the iOS App Store which restores full functionality, and suggests that impacted users change their email account password. Instead, regular users opened the Edison email app on their iPhone and suddenly found they could read strangers’ emails to their hearts’ content.Īs a result private conversations, personal information, intimate photographs, password reset notifications for third-party services, all manner of sensitive communications will have been exposed. Remember – this isn’t the familiar narrative of passwords leaking into the hands of the criminal underground who might be tempted to use it to break into email accounts. To try to describe such a security breach as a “temporary issue” or “bug” seems disingenuous to me. In short, realising just what an emergency it found itself in, Edison blocked users from accessing their email entirely.Īnd users’ emails were not accessed as a result of an attack by external hackers, but rather due to an injury that was entirely self-inflicted by Edison.Įdison may be keen to downplay the seriousness of what happened, but the truth is that its users did suffer a significant security and privacy breach.Ĭomplete strangers were able to access the email accounts of some Edison Mail users, and read and send email from those accounts without permission.Īnd as so much personal sensitive information is held in email accounts, the potential for abuse is considerable. We apologize for temporarily pausing the app from working for many users, which was required to ensure the safety and protection of all potentially impacted users. As a safety measure, the patch prevented all potentially impacted users from being able to access any mail from the Edison app. On Saturday morning a patch was deployed to remove and prevent any further exposure. This temporary issue was a bug, and not related to any external security issues.ĭata from these individual”s impacted email accounts may have been exposed to another user. The issue only impacted a fraction of our iOS app users (and no Android or Mac users were affected). This update caused a technical malfunction that impacted approximately 6,480 Edison Mail iOS users. On Friday, May 15th, 2020, a software update enabled users to manage accounts across their Apple devices. In response to a cavalcade of complaints from concerned users, Edison offered its “deepest apologies” for what it described as a “malfunction”.Įarlier today Edison Mail published a blog post which attempted to explain what happened and limit the damage to its reputation: It is believed that the problem arose after the company pushed out an update that included a new account syncing feature.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |