Skip to main content

Exploit Puts 20 Million Users At Risk

-



    A mobile security team called Zimperium has discovered major security issues in an app called Airdroid, a popular Android app that lets you manage your mobile device wirelessly.

Image result for AirDroid

Image result for AirDroid

Airdroid Has Security Vulnerabilities

Zimperium informed Sand Studio, the developer team behind Airdroid about the discovered vulnerabilities more than six months ago and Sand Stone promised to fix this security issue through patches in their updates.
Zimperium later found out upon checking again that the issues still existed in the latest version of the app.

How the App Makes You Vulnerable

This issue arose due to Airdroid using the same HTTP request to authorize the device and send usage statistics. This allows malicious parties to exploit the app’s built in functionalities and use them against users of the same network.
The key to this encryption is hardcorded into the application, meaning that everyone using the app has the same key. Through this key, attackers on the same network can intercept the authentication request (commonly known as the Man-in-the-middle attack) using the key extracted from any Airdroid APK (application package) and gain access to private account information, such as the email address and password associated with your Airdroid account.
Moreover, attackers using a transparent proxy can also intercept the network request Airdroid sends to check for add-on updates, and inject any APK they want. Airdroid would then notify the user about the add-on update and begin downloading the malicious APK and ask the user to accept the installation afterwards, leaving your device open to malicious applications and even more attacks.

Comments

Post a Comment

Popular posts from this blog

How to lessen Heat Risk in Fragile Product Packaging?

-
Image
The weather of summer is stepping in by every passing day. The temperature or heat is getting intense and so is the work at the shipment yards. For those who are set to ship their frangible products, the growing heat is a matter of concern right now. Packaging for fragile products in order to save them from the red-hot heat of the sun would be a difficult task. It is usually seen that packaging boxes sit on the shipping docs for days or maybe weeks. The packaging around the product should be resistible in a good amount to keep secure the product from the extreme heat of the summer. If in case you are dealing with the shipment dock staff you can never stay too carefulness with boxes intangible items. Hence, it would be wiser to take safeguard measures in time. Here are some utilize suggestions to keep your frangible product safe from the external heat. Food Boxes and their Insulation Boxes carrying food items incline to be in greater the heat as compared to other types of prod
Read more

14 Content Marketing Tools That Will Double Your Search Traffic

-
Image
What are the best content marketing tools out there? Chances are, it’s mentioned in this article – along with thirteen other effective content marketing tools that can double your blog’s search traffic, get shared across social media and add to lead generation when paired with good stories and valuable content. Content marketers are investing more into content marketing campaigns than ever before. But, just like them, you want to make sure that you get the best ROI. One of the SEO myths that you shouldn’t believe is that “using SEO tools can get you penalized.” This just isn’t true. Google penalizes site owners, because they try to game the system with over-optimized keywords and anchor text in their content marketing, not because they used a specific tool. In fact, once you’re armed with the best content marketing tools, the search engine space is yours to dominate. You just need to be clear about your goals – whether that’s generating more leads, closing more sales for your small bu
Read more