The bug referred to as KindleDrip permits hackers to take management of your system to steal financial institution particulars and make purchases in your behalf, what did Amazon do about it?

Develop Your Enterprise,
Not Your Inbox

Keep knowledgeable and be a part of our every day e-newsletter now!


4 min learn

This text was translated from our Spanish edition utilizing AI applied sciences. Errors might exist on account of this course of.


Nothing escapes hackers and now their new knowledge stealing tactic is hiding in your e-book reader . The Israeli firm Test Poin Software program, specialised in cybersecurity , detected a flaw in Amazon’s Kindle gadgets that was activated with a malicious e book.

Cybercriminals discovered a method to assault Kindle readers utilizing their very own options. With this they will take management of the system, delete the consumer’s e book library, make purchases or flip Kindle right into a malicious ‘bot’, which might enable it to assault different gadgets on the consumer’s native community, reviews EuropaPress . Nevertheless, the actual hazard is that it will probably steal the consumer’s Amazon credentials and financial institution particulars.

Though Kindle gadgets are sometimes thought of ” secure “, additionally they pose dangers to the consumer’s on-line safety.

These safety vulnerabilities enable concentrating on a really particular viewers,” stated Eusebio Nieva, Technical Director of Test Level Software program for Spain and Portugal. ” To make use of a random instance, if a cybercriminal wished to focus on Romanian residents, all they must do is publish some free and well-liked e-book within the Romanian language .”

How does the virus that hacks Kindle work?

Amazon Kindle has an vital characteristic referred to as ‘Ship to Kindle’ , which lets you ship paperwork, net pages and books to your Kindle system with only one button. This device has an extension for Google Chrome , which permits us to ship an internet web page and browse it extra calmly on the Kindle . This characteristic turned out to be a safety gap, Realmode Labs found.

One other method that hackers entry the Kindle system is thru an e book or doc that incorporates malware , which will be obtained in any digital library and may even come without spending a dime as a present.

When the consumer downloads and opens the doc, the malware executes code to take management of the system and carry out all of the actions that the proprietor can do, together with making unauthorized purchases and the opportunity of stealing their financial institution particulars .

One element that makes it extra harmful is that it is hidden between the titles of the Kindle Retailer itself , the place any consumer can self-publish their materials with out intermediaries reminiscent of publishing firms. The corporate defined that hackers took benefit of this characteristic to contaminate a number of Kindle gadgets.

What did Amazon do to guard Kindle customers?

Though as we speak it’s information once more, this vulnerability referred to as KindleDrip will not be precisely new. Test Level Analysis alerted Amazon to this difficulty final February, hoping the corporate would right it, and it did.

To repair the bug, in April Kindle robotically put in a firmware replace on gadgets. Model 5.13.5 contains the patch that corrects this vulnerability and was downloaded to computer systems linked to the web, though if the consumer doesn’t have the Kindle linked to a continuing WiFi sign, it might not have been activated.