Kindle Users at Risk of Hacking via Infected E-books GA S REGULAR Menu Lifewire Tech for Humans Newsletter! Search Close GO News > Smart & Connected Life

Kindle Users at Risk of Hacking via Infected E-books

KindleDrip bug can access Amazon accounts and steal bank information

By Cesar Cadenas Cesar Cadenas Writer California State University - Long Beach Cesar Cadenas has been writing about the tech industry since 2016 on a variety of topics like cryptocurrency, video games, the latest gadgets, and much more. lifewire's editorial guidelines Updated on August 10, 2021 04:17PM EDT Fact checked by Rich Scherr Fact checked by Rich Scherr University of Maryland Baltimore County Rich Scherr is a seasoned technology and financial journalist who spent nearly two decades as the editor of Potomac and Bay Area Tech Wire. lifewire's fact checking process Tweet Share Email Tweet Share Email Smart & Connected Life Mobile Phones Internet & Security Computers & Tablets Smart Life Home Theater & Entertainment Software & Apps Social Media Streaming Gaming A flaw has been detected in Kindle devices that could allow cybercriminals to steal a user’s Amazon credentials and banking information. The bug, known as KindleDrip, was first detected by Israeli cybersecurity firm Check Point Software who posted a report on its public research site that goes into detail how these hackers get into Kindle devices. Thana Prasongsin/Getty Images A hacker can access a device via an e-book or document that contains malware, and these files can be easily accessed from any virtual library or website. Once a user downloads and opens up the infected e-book, the malware takes control over the device and gains full access to a person’s Amazon account and, potentially, bank details. Cybersecurity consulting firm Realmode Labs found another security hole in the ‘Send to Kindle’ feature. The feature allows users to send documents, e-books, and web pages to a personal Kindle device. A user could unknowingly send an e-book infected with malware to their or someone else’s device. Realmode Labs released their own report detailing this exploit as well as provided some fixes on how to remedy this security flaw. 10'000 Hours/Getty Images Check Point Research alerted Amazon of this vulnerability back in February of this year and the vulnerability was later fixed in April. Version 5.13.5 of Kindle’s firmware corrected the issue on devices and corresponding computer. The update is available on Amazon's website. Check Point Research continues to warn that Kindle tablets and similar devices are just as vulnerable to cyberattacks as smartphones or personal computers, and tells users to be aware of the risks involved in connecting to anything that may seem suspicious. Was this page helpful? Thanks for letting us know! Get the Latest Tech News Delivered Every Day Subscribe Tell us why! Other Not enough details Hard to understand Submit More from Lifewire Can a Smart TV Get a Virus? How to Load Non-Amazon Books Onto a Kindle Fire Can a Router Get a Virus? How to Use the Kindle Cloud Reader Is Google Play Safe? What Is a Kindle? Can Chromebooks Get Viruses? Galaxy Tab, Kindle Fire, and Nook Tablet Smackdown How to Use Parental Controls on Kindle How to Use the Kindle App for Mac 9 Things to Look for in an E-Reader Browser Hijackers: What They Are and How to Protect Yourself From Them What E-Book and Audiobook Formats Does iPad Support? How to Update Your Logitech Unifying Receiver Amazon Kindle Library: 3 Ways to Borrow Kindle Books Kindle vs. Fire Tablet: What's the Difference? Newsletter Sign Up Newsletter Sign Up Newsletter Sign Up Newsletter Sign Up Newsletter Sign Up By clicking “Accept All Cookies”, you agree to the storing of cookies on your device to enhance site navigation, analyze site usage, and assist in our marketing efforts. Cookies Settings Accept All Cookies