21.4 C
New York
Sunday, April 18, 2021

Latest Posts

EBox 241 Podcast: OnePlus 7 Pro, Asus ZenFone 6 and Huawei controversy

Another EBox Podcast has arrived. In this week's Podcast we focused on the unveiling of the...

iTunes update breaks iFunbox-vShare alternative fix iMazing

iTunes update breaks iFunbox-vShare alternative fix iMazing vShare Sorry! Reauthorization failed? "Fix" ifunbox closing when connecting Apple device? "Fix"     We have had reports that the new iTunes...

Mi Portable Photo Printer Giveaway: We have a Xiaomi printer to offer!

The Mi Portable Photo Printer can be yours, a small portable printer designed to share memories...

The Mandalorian honored Apollo 13 and you might not have noticed

A second season that does not disappoint The episodes of the second season of The Mandalorian and the Disney series does not disappoint. If...

Android ALERT: Security flaw in popular apps on the Play Store

The Google Play Store is under attack by a new wave of malware – malicious software – that can result in the theft of sensitive data, login data, passwords and financial details like Login banking institutions.

The alert was given by investigators from the security agency Check Point, pointing out the susceptibility of numerous applications for Android that have not yet taken precautions against a serious vulnerability, exposed since August 2020 by Oversecured.

Vulnerability puts several Android apps at risk

Oversecured malware Android app

At stake is the vulnerability CVE-2020-8913. Your modus operandi consists of executing code that will give hackers control over all resources to which an application is entitled, based on the permissions granted to them.

Once this vulnerability has been exploited, attackers can harvest various metrics and information from the user. Among sensitive data and other sensitive information, the preferred target is login details and credentials.

According to Check Point researchers, the security breach originates from the Google Play Store Library. This is the official platform interface, the place from which developers can make new updates available for their applications, or launch new modules with additional content for apps.

This gives attackers the ability to run specific modules in any of the apps in that library. In other words, it multiplies the harmful potential of a security breach if the vulnerability is exploited.

The serious vulnerability in the Google Play Store Library

In view of the above, especially in the detailed video, it is now urgent to pressure the responsible programmers to fill the gap. Note that Google, on April 6, 2020, recognized the existence of the same and made available the patch respective.

Furthermore, the severity of the failure was rated at 8.8 out of 10, illustrating the seriousness of the case. Now it’s up to programmers to apply security fixes based on the package made available by Google.

Unfortunately, as of the writing of this article, there are still several popular apps on the Play Store susceptible to this type of threat. Check Point researchers looked at a set of popular apps last September, concluding that 13% of applications remained dangerously exposed.

Popular apps with security holes

  • Browsers: Edge
  • Dating: Grinder, OKCupid, Bumble
  • Maps and navigation: Yango Pro (Taximeter), Movit
  • Social networks: Viber
  • Business: Cisco Teams
  • Utilities: Xrecorder, PowerDirector

These are the Android apps that were still at risk, with Check Point notifying those responsible. However, Viber and Booking have already released security patches with the latest security updates.

EBox editors recommend:

Latest Posts

Check the air quality with these CO2 meters

What is a CO2 meter for? CO2 meters are small devices that have a series of sensors that are capable of analyze air quality of...

Fitbit will launch the smartband that can dethrone the Xiaomi Mi Band 6

The Xiaomi Mi Band 6 was launched at the end of March, and is preparing to...

Android 12 will receive very popular functionality on Windows

After analyzing the source code of a beta version of Android 12, the folks at XDA...

5 great Amazon deals to cheer you up on Saturday

JBL Free X If you are looking for wireless headphones and you would like them to be from a familiar and well-known brand, you should...

Don't Miss

Do you use Facebook Messenger and love Star Wars? Learn how to activate the new theme!

Facebook Messenger is one of the most widely used communication applications in the world. As much...

Someone has put all the GTA maps together to imagine a massive GTA 6

Will this be the map of GTA 6? Directly from Reddit, The user Megahurst wanted to share with the community an idea that was around...

These are the best solutions of light bulbs and intelligent lights of Xiaomi

Xiaomi WiFi smart bulbs and lights All these products are characterized by offering WiFi connectivity so that we can control them from our mobile phone....

Do you use Google Docs? You’ll love the new feature in documents

Google yesterday updated the name of GSuite for Workspace, however, this news did not arrive alone....

PES 2020 has new assets, but will it be enough to win FIFA 20?

As September approaches, we have the same debates as usual, is this the year PES will...
%d bloggers like this: