Android apps with 250M downloads still vulnerable to patched bug

silversurfer

silversurfer

Level 85
Thread author
Verified
Honorary Member
Top Poster
Content Creator
Malware Hunter
Well-known
Aug 17, 2014
9,652
Content source
https://www.bleepingcomputer.com/news/security/android-apps-with-250m-downloads-still-vulnerable-to-patched-bug/
Android apps with over 250 million downloads are still susceptible to a severe vulnerability in a Google library that was patched in August 2020.
In August, mobile app security company Oversecured discovered a vulnerability in the Google Play Core Library that allowed malicious applications to execute code in legitimate apps.
Click to expand...
Researchers from Check Point Research have discovered that there are still apps with millions of installs using the vulnerable library over three months later.
"Since the publication of this vulnerability, we started monitoring vulnerable applications [...] " Check Point Research stated in their report.
Click to expand...
Below is a list of some of the vulnerable applications discovered by Check Point. As you can see, all of these apps have at least 1 million downloads, with one as high as 100 million downloads.
App NameVersionDownload Count
Aloha2.23.01,000,000
Walla! Sports1.8.3.1100,000
XRecorder1.4.0.3100,000,000
Moovit5.56.0.45950,000,000
Hamal2.2.2.11,000,000
IndiaMART12.7.410,000,000
Edge45.09.4.508310,000,000
Grindr6.32.010,000,000
Yango Pro (Taximeter)9.565,000,000
PowerDirector7.5.050,000,000
OkCupid47.0.010,000,000
Teams40.10.1.2741,000,000
Bumble5.195.110,000,000
Click to expand...
www.bleepingcomputer.com

Android apps with 200 million installs vulnerable to security bug

Android apps with over 250 million downloads are still susceptible to a severe vulnerability in a Google library that was patched in August 2020.
www.bleepingcomputer.com www.bleepingcomputer.com
 
  • Like
  • Thanks
Reactions: Venustus, SeriousHoax, dinosaur07 and 6 others
SeriousHoax

SeriousHoax

Level 46
Verified
Top Poster
Well-known
Mar 16, 2019
3,541
  • Like
  • Applause
  • Wow
Reactions: Venustus, ForgottenSeer 85179, Protomartyr and 2 others
Gandalf_The_Grey

Gandalf_The_Grey

Level 74
Verified
Honorary Member
Top Poster
Content Creator
Well-known
Apr 24, 2016
6,323
SeriousHoax said:
Edge on Android receives security updates occasionally even though the base is outdated.
Click to expand...
Hopefully next year things will be better for Edge on Android:
malwaretips.com

Microsoft promises big improvements for Edge browser on Android

Microsoft Edge for Android was first made available back in 2017 and it has continued to get updates and new features regularly. Unfortunately, the Android version of Edge is still based on Chromium 77 when other browsers like Chrome are using Chromium 87, which offers better performance and...
malwaretips.com malwaretips.com
EDIT: I hope we will get a decent changelog like for Edge on Windows, because now we just don't know if this is fixed.
 
  • Like
  • Applause
Reactions: Venustus, upnorth, ForgottenSeer 85179 and 4 others
You must log in or register to reply here.

Similar threads

Gandalf_The_Grey
    • Like
    • Wow
    • +Reputation
Android malware infiltrates 60 Google Play apps with 100M installs
Replies
5
Views
1,970
News Archive
BryanB
BryanB
Gandalf_The_Grey
    • Like
    • Wow
    • +Reputation
Parental control app with 5 million downloads vulnerable to attacks
Replies
0
Views
764
News Archive
Gandalf_The_Grey
Gandalf_The_Grey
LASER_oneXM
    • Like
    • +Reputation
Kyocera Android app with 1M installs can be abused to drop malware
Replies
0
Views
743
News Archive
LASER_oneXM
LASER_oneXM

About us

  • MalwareTips is a community-driven platform providing the latest information and resources on malware and cyber threats. Our team of experienced professionals and passionate volunteers work to keep the internet safe and secure. We provide accurate, up-to-date information and strive to build a strong and supportive community dedicated to cybersecurity.

Quick Navigation

Forum Rules Warning System Welcome Guide Two-factor Authentication

User Menu

Login

Follow us

Follow us on Facebook or Twitter to know first about the latest cybersecurity incidents and malware threats.

Top