YO

Yo! Remember the hit new app that managed $1 million in funding we covered yesterday, which enables smartphone owners to send "Yo" alerts to contacts? The service has been hacked by a student and two roommates. Yo has confirmed they're investigating the hack and expect to have the security vulnerability patched in the "next few hours". The hackers have been able to access any Yo user's mobile number with the ability spam any user with multiple Yo messages.

The hackers opted not to spam users of the Yo service, but (if the apps weren't already pointless enough) users have reported to receiving a Yo through the app which played a snippet of Rick Astley's "Never Gonna Give You Up". It's unsure whether this is related to this security hack or another bug in the service exploited by others. Unfortunately, the founder of Yo failed to specify which hacks were still active.

Should you be actively using the apps, you'll be pleased to learn the team is working on patching everything up.

Source: TechCrunch

 

Reader comments

Not only is Yo stupid, it's now also a security risk

31 Comments

OH NO! That doesn't seem like much of a security risk. Wouldn't you just delete the app? They presumably can't see anything else about your number, so it would be no different then them trying random number combinations and accidentally getting you.

I don't know... A list with the phone numbers of thousands of people with pre-established poor decision making abilities could be useful to certain nefarious types.

Posted via Android Central App

Nice to see some one who hacks do something funny than something nefarious, although being rick rolled ten years after it first started could be considered nefarious.

This is awesome in a way. Not the exploiting the end users side of things, but if I installed this app and got Rick Rolled after I would literally not stop laughing.

And how many people downloaded because they saw your first article about? Every time you write about a Shitty app, you give it more users. I would have never known about this otherwise

Posted via Android Central App

I'm actually glad they wrote it. I wasn't interested in it at all but I did see it on the front page of the play store a day before they wrote this.

Posted via Android Central App

Thanks for the link, that was an interesting reading and point of view, albeit contrary to the missed calls yo 'consumes' data...

True, but if you were running a phone company in Bangladesh and were faced with the reality of losing 25% to 30% of revenue because of people using "missed calls", you might want to invest in a service like "Yo" that sends a tiny chunk of data. You might even let your customers use it for free just so you can free up your voice infrastructure.