Skip to main content

Android security bug let malicious apps siphon off private user data

 http://voxsomnia.com/forums/viewtopic.php?t=465665


http://voxsomnia.com/forums/viewtopic.php?t=208610


http://voxsomnia.com/forums/viewtopic.php?t=212549


http://voxsomnia.com/forums/viewtopic.php?t=428700


http://voxsomnia.com/forums/viewtopic.php?t=466953


http://voxsomnia.com/forums/viewtopic.php?t=404503


http://voxsomnia.com/forums/viewtopic.php?t=467862


http://voxsomnia.com/forums/viewtopic.php?t=206997


http://forum.lilithgame.com/viewtopic.php?t=58278


http://forum.lilithgame.com/viewtopic.php?t=24632


http://forum.lilithgame.com/viewtopic.php?t=15582


http://forum.lilithgame.com/viewtopic.php?t=58468


http://forum.lilithgame.com/viewtopic.php?t=21018


http://forum.lilithgame.com/viewtopic.php?t=58641


http://forum.lilithgame.com/viewtopic.php?t=57937


http://forum.lilithgame.com/viewtopic.php?t=57758


http://forum.lilithgame.com/viewtopic.php?t=58251


http://forum.lilithgame.com/viewtopic.php?t=58795


http://forum.lilithgame.com/viewtopic.php?t=23801


https://cishub.boardhost.com/viewtopic.php?id=115160


https://cishub.boardhost.com/viewtopic.php?id=114741


https://cishub.boardhost.com/viewtopic.php?pid=451372


https://cishub.boardhost.com/viewtopic.php?id=115465


https://cishub.boardhost.com/viewtopic.php?pid=251670


https://cishub.boardhost.com/viewtopic.php?id=115685

A security vulnerability in Android  could have allowed malicious apps to siphon off sensitive data from other apps on the same device.


App security startup Oversecured found the flaw in Google’s widely-used Play Core library, which lets developers push in-app updates and new feature modules to their Android apps, like language packs or game levels.


A malicious app on the same Android device could exploit the vulnerability by injecting malicious modules into other apps that rely on the library to steal private information, like passwords and credit card numbers, from inside the app.


Sergey Toshin, founder of Oversecured, told TechCrunch that exploiting the bug was “pretty easy.”

https://cishub.boardhost.com/viewtopic.php?id=114771


https://cishub.boardhost.com/viewtopic.php?pid=243013


https://www.zimmerpflanzenlexikon.info/forum/index.php?topic=5645.0


https://www.zimmerpflanzenlexikon.info/forum/index.php?topic=1982.0


https://www.zimmerpflanzenlexikon.info/forum/index.php?topic=4587.0


https://www.zimmerpflanzenlexikon.info/forum/index.php?topic=13791.0


https://www.zimmerpflanzenlexikon.info/forum/index.php?topic=17548.0


http://forum.unm.org.ua/viewtopic.php?f=12&t=8130


http://forum.unm.org.ua/viewtopic.php?f=12&t=8451


http://forum.unm.org.ua/viewtopic.php?f=35&t=8398


http://forum.unm.org.ua/viewtopic.php?f=35&t=8260


http://forum.unm.org.ua/viewtopic.php?f=12&t=8449


http://forum.unm.org.ua/viewtopic.php?f=35&t=8408


http://forum.unm.org.ua/viewtopic.php?f=12&t=8302


http://forum.unm.org.ua/viewtopic.php?f=12&t=8350


http://forum.nertex.sk/viewtopic.php?p=164196


http://forum.nertex.sk/viewtopic.php?p=165058


http://forum.nertex.sk/viewtopic.php?p=149221


http://forum.nertex.sk/viewtopic.php?p=163605


http://forum.nertex.sk/viewtopic.php?p=41089


http://football66.ru/forum/viewtopic.php?t=907290


http://football66.ru/forum/viewtopic.php?f=5&t=864208


http://football66.ru/forum/viewtopic.php?t=909441


http://football66.ru/forum/viewtopic.php?f=5&t=827627


http://football66.ru/forum/viewtopic.php?t=889209


http://football66.ru/forum/viewtopic.php?t=877061


http://football66.ru/forum/viewtopic.php?t=881529


http://football66.ru/forum/viewtopic.php?t=904501


https://forum.tenno-inside.com/showthread.php?tid=1901


http://www.rozthlefona.gr/forum/viewtopic.php?f=9&t=22101


http://www.rozthlefona.gr/forum/viewtopic.php?t=112


http://www.rozthlefona.gr/forum/viewtopic.php?t=17240

The startup built a proof-of-concept app using a few lines of code and tested the vulnerability on Google Chrome for Android, which relied on a vulnerable version of the Play Core library. Toshin said the proof-of-concept app was able to steal a victim’s browsing history, passwords, and login cookies.


But Toshin said that the bug also affected some of the most popular apps in the Android app store.


Google confirmed the bug, rated 8.8 out of 10.0 for severity, is now fixed. “We appreciate the researcher reporting this issue to us, and as a result it was patched in March,” said a Google spokesperson.


Toshin said app developers should update their apps with the latest Play Core library to remove the threat.

http://www.rozthlefona.gr/forum/viewtopic.php?t=19148


http://www.rozthlefona.gr/forum/viewtopic.php?f=9&t=22051


http://www.rozthlefona.gr/forum/viewtopic.php?t=22045


http://www.rozthlefona.gr/forum/viewtopic.php?t=21061


http://www.rozthlefona.gr/forum/viewtopic.php?t=12500


http://www.kadimkrallik.com/forum/thread-204.html


http://foro.testdevelocidadinternet.com/viewtopic.php?t=613938


http://foro.testdevelocidadinternet.com/viewtopic.php?t=600577


http://foro.testdevelocidadinternet.com/viewtopic.php?t=515633


http://foro.testdevelocidadinternet.com/viewtopic.php?t=610220


http://foro.testdevelocidadinternet.com/viewtopic.php?t=610191


http://foro.testdevelocidadinternet.com/viewtopic.php?t=602130


http://foro.testdevelocidadinternet.com/viewtopic.php?t=610332


http://foro.testdevelocidadinternet.com/viewtopic.php?t=610178


https://mysourcetelevision.com/forum/showthread.php?tid=68624


Labels:

Comments

Post a Comment

Popular posts from this blog

Finary wants to create the wealth management dashboard for the next generation

 Meet Finary, a new French startup that wants to change how you manage your savings, investments, mortgage, real estate assets and cryptocurrencies. The company lets you aggregate all your accounts across various banks and financial institutions so that you can track your wealth comprehensively over time. After attending Y Combinator, the startup has just closed a $2.7 million (€2.2 million) seed round led by Speedinvest with Kima Ventures and angel investors, such as Raphaël Vullierme also participating. https://www.redheronation.org/forums/showthread.php?tid=892 http://forum.naronanews.com/showthread.php?tid=19123 https://crackx.to/Thread-Mega-nz-voucher-codes http://kaikodai.com/viewtopic.php?f=16&t=60576 https://whitehatcommunity.com/showthread.php?pid=217878&tid=148248 http://hanabilkova.svet-stranek.cz/nakup/41 http://mobile.jaksezijespolecnicim.stranky1.cz/forum/ http://maskedavengerstudios.blogspot.com/2014/07/batman66-king-tut.html https://emrebaransel.blogspot.com...
Post a Comment
Read more

GET TECHNICAL FORUMS

http://www.streathamcommonforum.co.uk/viewtopic.php?f=14&t=21768 http://www.cyklistikakrnov.com/forum/viewtopic.php?t=89069 http://fms.misionsucre.gob.ve/foro/viewtopic.php?t=902593 http://forum.prokarters.co.uk/viewtopic.php?f=2&t=545030 https://techninjahub.blogspot.com/2019/05/get-technology-ideas-from-here.html https://technicalweb85.blogspot.com/2019/05/get-technical-support-by-visiting-this.html https://www.ex-ttcommunity.com/forum/viewtopic.php?t=239190 http://understandanxiety.org/anxiety-forum/viewtopic.php?t=44589 http://www.skyarn.fr/forum/viewtopic.php?t=59733 http://www.trungvitlon.com/viewtopic.php?t=2215 http://www.taflan.org/viewtopic.php?t=297889 http://cafe103.info/phpBB/viewtopic.php?t=95110 http://forum.rethia.net/viewtopic.php?t=1331399 https://coalpail.com/coal-forum/viewtopic.php?t=12562 http://frlegends.net/showthread.php?tid=11133 http://forum.packbel.by/viewtopic.php?t=51682 http://pure-arrogance.de/forum/viewtopic.php?...
Post a Comment
Read more

French constitutional authority rejects law forcing online platforms to delete hate-speech content

http://dominoqqforum.com/showthread.php?tid=131860 http://asusbr.com/forum/showthread.php?tid=285443 http://taxiforums.net/showthread.php?tid=16147 http://www.kadimkrallik.com/forum/thread-95-post-71609.html#pid71609 https://forum.taskforcehusky.co.uk/thread-168512.html https://www.arcadesdcafe.com/viewtopic.php?t=418467 https://www.arcadesdcafe.com/viewtopic.php?t=418749 French regulation on hate speech on online platforms has been widely deemed as unconstitutional by France’s Constitutional Council, the top authority in charge of ruling whether a new law complies with the constitution. It won’t come into effect as expected in the coming weeks. As a reminder, the original law said that online platforms should remove within 24 hours illicit content that has been flagged. Otherwise, companies will have to pay hefty fines every time they infringe the law. For social media companies, it could have potentially cost them many millions of dollars per year. Illicit content ...
Post a Comment
Read more