EngageLab SDK Vulnerability Puts 50M Android Users at Risk, Including 30M Crypto Wallet Installs

A recently patched security vulnerability in the EngageLab SDK, a widely used third-party Android software development kit, has been found to put millions of cryptocurrency wallet users at risk.

The vulnerability, discovered by Microsoft, allows malicious apps on the same device to bypass Android’s security sandbox and gain unauthorized access to private data.

This flaw is particularly concerning for the 30 million users who have installed cryptocurrency wallets on their devices, as it could have allowed hackers to steal sensitive financial information.

According to reports, the vulnerability affected over 50 million Android users, making it a significant threat to the security of mobile devices.

Fortunately, the vulnerability has been patched, and users are advised to update their apps to ensure they have the latest security fixes.

Android users are reminded to always keep their devices and apps up to date to protect themselves from potential security threats, and to be cautious when installing new apps from unknown sources.

Source: Original Article

Press ESC to close

Share Article:

Tarang Parmar

Marimo RCE Flaw CVE-2026-39987 Exploited Within 10 Hours of Disclosure

The Hidden Dangers of AI Browser Extensions: A Growing Security Threat