Developers using Twilio platform to build enterprise mobile communications apps have put call and text data at risk for exposure. The so-called Eavesdropper vulnerability, disclosed today by Appthority, has been around since 2011 and in apps downloaded likely more than 200 million times. Many of the apps have been removed from the respective Apple and Google stores but as of August, 75 still remained on Google Play and 102 on the App Store. An attacker could run a simple script to convert audio files to text and search the text for keywords that would lead to proprietary or sensitive data.
Source: https://threatpost.com/eavesdropper-vulnerability-exposes-mobile-call-text-data/128838/