ADVERTISEMENT

Clash of Clans gamers at risk while using third-party app

An exposed database and secrets on a third-party app puts Clash of Clans players at risk of attacks from threat actors.

Clash of Clans app leak

Image by Cybernews.

Paulina Okunytė
Paulina Okunytė Senior Journalist
Dec 28, 2023 Updated: 29 December 2023 1 min read
ADVERTISEMENT

Exposed secrets:

  • Default_web_client_id: a unique public identifier dispatched for an application using Firebase oAuth.
  • gcm_defaultSenderId: a technical ID assigned by Google cloud when using gradle plugin.
  • Google_api_key: a string that is used to access specific google services.
  • Google_app_id: an id that is used coupled with google_api_key for identification of a Google app.
  • Google_crash_reporting_api_key: authorization for Google crash reports.
  • Google_storage_bucket: a URL for Google storage bucket storage system
ADVERTISEMENT