[ad_1]
Is there no time now?
In fact, Google had already filled the security gap in an Android library in April. However, as many app developers don’t use the update, the vulnerability is still present on several hundred million Android devices.
Security company Check Point has identified 14 Android apps that contain a serious security flaw. Overall, the affected apps were downloaded nearly 850 times. The loophole itself is in the name of a Google library Play Core Library. Google fixed the security hole in April 2020. However, the affected apps still use an older version of the library and are therefore still vulnerable.
The vulnerability allows attackers to store files from unknown sources in folders that only the Google Play app can access. Attackers can then bypass an important protection mechanism of the Android operating system, which normally ensures that apps cannot access code or files from other apps. According to Check Point, an attacker could, for example, steal logins from a banking app or monitor a data subject’s social media activity.
These Android apps are affected
After Check Point informed operators of the 14 affected apps of the security gap, five of them filled the security gap with an update. The five apps are Booking.com, Viber, Cisco Teams, Moovit, and Grindr. If you use one or more of these apps, you should urgently check that the latest version is actually installed.
According to Check Point, the Android version of the Microsoft Edge browser, the Aloha browser, the well-known Ok Cupid dating app, the Yango Pro taximeter app, the two video apps Xrecorder and Powerdirector, and the Israeli sports news app are still vulnerable Walla Sports, India Mart Indian Ecommerce App and Hamal Arab Pregnancy App. Only when the developers of the respective app have upgraded to a newer version of Play Core Library these applications should be considered safe again.
Also interesting: Android and iOS: BSI requires 5 years of security updates for smartphones
Most read
Source link
