Vatican eRosary app hacked multiple times just days after launch

Reading Time: < 1 minute

A new gadget aimed at getting more young people to pray has been hacked at least three times in the days since its launch.

The Vatican unveiled its “smart” Rosary bracelet in mid-October.

It is activated by making the sign of the cross and connects to the “Click to Pray” eRosary app, which is designed to “engage young people” in prayer.

But just days after its launch, security concerns emerged.

A Holy See representative told Euronews that the “Click to Pray” application has been subject to at least three breaches since the launch, adding that the app developers had resolved each vulnerability “in less than 24 hours”.

One security researcher — who reportedly hacked the app in just 15 minutes — claimed on Twitter that he had contacted the Vatican afterwards so they could fix the issue together.

According to the report, a security flaw in the mobile application could allow an attacker to take over the account of the victim and get the victim’s personal information just by knowing the person’s email address.

The gadget’s Achilles’ heel was nestled in the authentication system, which sent a pin code for the user to log in. A hacker could access the pin code to log in as the victim.

Via Euronews

%d bloggers like this: