Camera360 is a popular photo shooting and editing program with millions of users worldwide.
It has been downloaded about 30 million times and has a 4.4 rating from 2 million users.
FireEye has found that the vulnerability lies in the Appss cloud services.
The cloud access is protected by username and password.
Apps that can read logcat or capture web link traffic can steal this data.
The secret album option uses an additional password to secure important images.
FireEye says that the potential hackers can obtain user passwords by cracking the leaked password hash.
Password hashes and leaked email addresses can be used to access to the cloud service.
source: www.techworm.net
