Neon, a call-recording app that actually pays users for their recorded audio, has hit pause. The app was taken offline after a serious security vulnerability came to light—one that left sensitive user information like phone numbers, call recordings, and transcripts exposed. The issue was first flagged by researchers at TechCrunch.
How the Flaw Was Discovered
While digging into Neon’s network traffic, researchers noticed something alarming. Using a tool called Burp Suite, they found that the app’s servers weren’t properly locked down. Each recorded call was being stored with a raw audio file that was accessible through a public link. Even worse, the servers were also exposing the text transcripts that went with those calls.
In short, anyone who stumbled upon the links could listen in on private conversations.
Neon’s Response
Once the vulnerability was reported, Neon’s founder stepped in quickly and shut the app down. In an email to users, they explained that the service would remain offline while the team added “extra layers of security.” The message reassured users that protecting their data is a top priority—especially as the app continues to grow.
For now, Neon fans will have to wait and see when the app makes a comeback, hopefully stronger and more secure than before.
