EngageLab SDK Security Vulnerability Puts 50M Android Users at Risk

A recently discovered and patched security flaw in the EngageLab SDK, a widely used third-party Android software development kit, has exposed approximately 50 million Android users to potential security risks.

The vulnerability, identified by Microsoft Defender, allows malicious apps installed on the same device to bypass Android’s security sandbox and gain unauthorized access to sensitive data.

This is particularly concerning for the 30 million users who have cryptocurrency wallet installations on their devices, as it could have potentially allowed hackers to access their wallet information and other private data.

The EngageLab SDK flaw highlights the importance of ensuring the security and integrity of third-party software development kits used in mobile app development.

Fortunately, the vulnerability has been patched, and users are advised to update their apps to the latest version to prevent any potential security breaches.

Source: Original Article

Press ESC to close

Share Article:

Tarang Parmar

Backdoored Smart Slider 3 Pro Update Distributed via Compromised Nextend Servers

The Hidden Dangers of AI Browser Extensions: A New Security Threat