Security firm Fallible found about 2,500 Android apps with secret access keys hard-coded into them. Credentials include access keys for services like Slack, Twitter, Dropbox, Flickr, Instagram, or Amazon Web Services. A single leaked key can lead to a massive data breach if it is used to access to sensitive data or systems that can be abused. Researchers from German university found more than 1,000 access credentials for Backend-as-a-Service (BaaS) frameworks stored inside Android and iOS applications.”]