Advertisement
News

Pregnancy Tracking App ‘What to Expect’ Refuses to Fix Issue that Allows Full Account Takeover

Vulnerabilities in the popular What to Expect app include one that allows a full account take over, and another that exposes that email address of forum admins.
Pregnancy Tracking App ‘What to Expect’ Refuses to Fix Issue that Allows Full Account Takeover
Image: What to Expect.

What To Expect, a popular pregnancy tracking app on both iOS and Android, is ignoring multiple serious vulnerabilities in its app, including one which allows a full takeover of a user’s account, exposing their sensitive reproductive health information.

The vulnerabilities are particularly sensitive at a time when advocates for reproductive health can become targets of harassment.

In a write-up he shared with 404 Media before publication, security researcher Ovi Liber said “exposure of reproductive health information could have severe consequences, leaving users vulnerable to harassment, doxing, incrimination, or even targeted attacks by malicious actors.”

Advertisement