![]() Ltd., SHAREit enables users to transfer various kinds of files including Android application packages (apk). Owned by Singapore-based tech giant Smart Media4U Technology Pte. Besides the inherent risk of remote code execution (RCE), vulnerabilities in SHAREit can also lead to man-in-the-middle, and man-in-the-disk attacks. “We reported these vulnerabilities to the vendor, who has not responded yet,” wrote senior engineers Echo Duan Opens a new window and Jesse Chang Opens a new window at Trend Micro, detailing how the exploitation of these security flaws could allow the execution of malicious code where the app is located on the device. In a blog post Opens a new window published this week, Trend Micro revealed that the Android app of SHAREit, a popular file transfer service, features several critical security vulnerabilities that exposed hundreds of millions of SHAREit’s daily active users to various cybersecurity threats for several months. Despite three months having passed since the discovery, SHAREit is yet to apply security patches to its Android mobile app. Unpatched security vulnerabilities in popular file transfer and content sharing app SHAREit can lead to data theft, arbitrary code execution, and installation of malware, researchers at Trend Micro have discovered.
0 Comments
Leave a Reply. |
Details
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |