Researchers discover exploit that unlocks Activation Lock iOS devices "New versions of AirDroid, 4.0.0 and 4.0.1, were released in November, but they're still vulnerable, according to Zimperium, so the researchers decided to make the vulnerability public." "The Zimperium researchers claim that they notified the AirDroid developers about the problem in May and were informed in September about an upcoming update," Computerworld says. The remote management app has "access to a device's contacts, location information, text messages, photos, call logs, dialer, camera, microphone and the contents of the SD card." The app has been downloaded over 200 million times since its introduction to the Google Play store in 2011. This information could allow man-in-the-middle attackers to push out malicious AirDroid add-on updates, which would then gain the permissions of the app itself." In a blog post, Zimperium researchers say AirDroid also sends some data to remote servers over HTTP. According to Computerworld Opens a new window, "The AirDroid screen-sharing and remote-control application sends authentication information encrypted with a hard-coded key. Researchers at the security firm Zimperium have discovered an encryption flaw in the remote management app AirDroid that can be exploited to pull data and execute remote attacks against unsuspecting users. A daily dose of today's top tech news, in brief.įlaw in remote management app AirDroid exposes Android users to hacking
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |