Six months, and the application AirDroid users vulnerable to attacks by injection BB malicious software.
Jobseeker security says that the application of remote control AirDroid available on the Google Play store for free download may display more than 10 million users to the risk of injection BB malicious software and steal data attacks, for less than its estimate six months, due to their use of the network is safe.
According to a post published by security company Zimperium, the application that Thmellath number reached 50 million downloads on Google Play store, using fixed and weak encryption during upload files for sensitive user data.
So attackers third parties present on the network can exploit the weakness of encryption used to control the device of the victim and the payment of an impostor updates or see sensitive to the user , including international data mobile equipment identity , known for short as (imei) and IMSI) international mobile subscriber identity) , a digital identities are designed to be individually foreach device in the world apart.
It is worth mentioning that the security company has done a video demonstrating the method used for the exploitation of the serious gap, it has also notify the company for six months, but the company 's response has been slow and up to the minute updates were not fired for tinkering gap drastically.
For this we recommend every professional code of gawkers, who are using the application, remove itimmediately and pending Trgiat radical opening.
0 Comments