A security vulnerability has been identified in the Tomofun Furbo Mobile App for Android, specifically in the Authentication Token Handler component. This vulnerability permits the insecure storage of sensitive user information, which can be exploited locally on the device. The potential attack vector has been disclosed publicly, raising concerns for users. Despite attempts to contact the vendor regarding this issue, there has been no acknowledgment or response from Tomofun.
https://securityvulnerability.io/vulner ... 2025-11645