The FireEye analyzed the thousand free apps for Android more unloaded the store Google Play and found that most are susceptible to attacks by Man-In-The-Middle (MITM). According to the report of the company, 68 percent of the applications had one of three SSL vulnerabilities that were the object of study.
MITM attacks occur when a criminal can intercetar the data exchanged between a device and a remote server. After being intercetados, data can be collected freely, and can be user names, keywords, equipment identification, emails, location, photos and videos. Additionally, this vulnerability can also be exploited in such a way that cybercriminals can inject malicious files in vulnerable applications or launch DDoS attacks.
FireEye's team discovered that many of these vulnerabilities were coming from some sort of template settings for automatic insertion of advertising used by the developers of apps.
MITM attacks occur when a criminal can intercetar the data exchanged between a device and a remote server. After being intercetados, data can be collected freely, and can be user names, keywords, equipment identification, emails, location, photos and videos. Additionally, this vulnerability can also be exploited in such a way that cybercriminals can inject malicious files in vulnerable applications or launch DDoS attacks.
FireEye's team discovered that many of these vulnerabilities were coming from some sort of template settings for automatic insertion of advertising used by the developers of apps.
No comments:
Post a Comment