A keyboard for android collects information from 30 million devices

Android security problems have become commonplace. Often a malicious application sneaks into the app store. Something that has happened again, since an Android keyboard has been affected by a security breach in the databases of the company that develops it (Al.Type). It seems that the keyboard had some additional function that has caused it to serve as a keylogger.

An Android keyboard collects information from 30 million devices

This has caused information to be collected from the devices on which it was installed. Subsequently, this information has been sent to the MongoDB databases. Although the company has stepped up indicating that the keyboard does not collect information from users. Only that information that is collected is sent in encrypted form. Although, an inves

Kromtech's research proves otherwise.

A keyboard collects information

Data would have been obtained from emails, dates of birth, photos, contacts or access credentials. The number of affected devices amounts to more than 30 million so far. It is estimated that the amount of data they have stored now amounts to 577 GB of information. It is assumed to be currently stored in the database in MongoDB. At least six million entries have the user's first and last name.

This information is of enormous value on the black market. That is the main concern, that it may end up being sold. Although so far there has been no indication that this will happen. But there is always the possibility.

For now, all you can do is remove the AI.Type keyboard from the Android device. It is also recommended to change passwords just in case. At the moment it seems that it only affects those users with an Android phone. But, we will have to be attentive to what happens in the coming days.