Security News > 2021 > August > Amazon Kindle flaws could have allowed attackers to control the device

Amazon Kindle flaws could have allowed attackers to control the device
2021-08-06 14:17

Now patched by Amazon, security vulnerabilities found by Check Point would have given attackers access to a Kindle device and its stored data.

Amazon Kindle owners could have exposed themselves to a remote control attack simply by opening the wrong e-book.

In a report published on Friday, cybersecurity provider Check Point said that it discovered security holes in the Kindle that would have helped a cybercriminal take full control of the device, potentially leading to the theft of sensitive information including the Amazon device token, a unique key used to route messages and other notifications.

To check the firmware version on your Kindle, go to Settings, select Menu, and then tap Device Info.

Before Amazon patched the security flaws, a Kindle user could have unknowingly triggered the exploit just by opening a malicious e-book sent by the attacker, Check Point said.

With the vulnerabilities exploited, an attacker could have gained remote control to delete a user's e-books and even turn the Kindle into a malicious bot to attack other devices on the user's network.


News URL

https://www.techrepublic.com/article/amazon-kindle-flaws-could-have-allowed-attackers-to-control-the-device/#ftag=RSS56d97e7

Related vendor

VENDOR LAST 12M #/PRODUCTS LOW MEDIUM HIGH CRITICAL TOTAL VULNS
Amazon 60 4 39 62 15 120