Major Security Flaws in Popular QuickBlox Chat and Video Framework Expose Sensitive Data of Millions

Executive Summary

• Team82 and Check Point Research (CPR) collaborated to look at the security of the popular QuickBlox software development kit (SDK) and application programming interface (API).


• QuickBlox’s development framework runs under the hood of popular chat and video applications in critical industries such as finance and telemedicine.


• Together, we uncovered critical vulnerabilities that could put the personal information of millions of users at risk.


• Team82 and CPR also demonstrate proof-of-concept exploits against applications running the QuickBlox SDK and API. …

api application application programming interface applications chat check check point critical data development executive flaws framework interface kit major point popular programming research sdk security security flaws sensitive data software software development software development kit team82 under video