Microsoft uncovers a security vulnerability that could be a threat to billions of Android devices

Android logo on smartphone stock photo (8)
Credit: Edgar Cervantes / Android Authority
  • Microsoft has uncovered a security vulnerability affecting Android apps named “Dirty Stream.”
  • This could allow attackers to execute malicious code within popular apps, potentially leading to data theft.
  • The flaw is widespread, with Microsoft identifying vulnerable apps that have billions of combined installations.

Microsoft has brought to light a critical security loophole, potentially affecting countless Android applications. Dubbed “Dirty Stream,” this vulnerability presents a serious threat that could grant someone the ability to take control of apps and steal valuable user information. (h/t: Bleeping Computer)

The heart of the “Dirty Stream” vulnerability lies in the potential for malicious Android apps to manipulate and abuse Android’s content provider system. This system is typically designed to facilitate secure data exchange between different applications on a device. It includes safeguards such as strict isolation of data, the use of permissions attached to specific URIs (Uniform Resource Identifiers), and thorough validation of file paths to ward off unauthorized access.



from Android Authority https://ift.tt/HpyDI9N
via IFTTT

Comments

Post a Comment

Popular posts from this blog

6 investors discuss why AI is more than just a buzzword in biotech

As ChatGPT has so aptly demonstrated, AI is now truly entering the mainstream consciousness. That’s why we weren’t very surprised when a slew of investors told us they rarely see a biotech startup that doesn’t incorporate AI in some form or other these days. “Most of the companies we have seen have an AI component to support the discovery or development processes,” Francisco Dopazo, a general partner at Humboldt Fund told TechCrunch recently. But despite becoming quite the buzzword, AI’s apparent ubiquity in biotech isn’t actually driving deal flow or higher valuations. So to get a better idea of how AI is affecting biotech in 2022, we asked six investors to tell us what they look for in a biotech startup today. For Franck Lescure, a partner at Elaia Partners, in biotech, having an AI component isn’t an automatic deal closer. “We do not favor biotech startups with extant AI over those without: Bio-revolution is not only digital. Digital is one tool; the other major tool is the livin
Read more

Voiceflow, a Canada-based SaaS platform that lets companies launch their own voice and chat bots, raises $20M Series A led by Felicis Ventures (Igor Bosilkovski/Forbes)

Image
Igor Bosilkovski / Forbes : Voiceflow, a Canada-based SaaS platform that lets companies launch their own voice and chat bots, raises $20M Series A led by Felicis Ventures   —  Canadian collaborative conversational AI tool Voiceflow announced today that it has raised $20 million in a Series A round led by Felicis Ventures. from Techmeme https://ift.tt/3rFQ9St via IFTTT
Read more

Ex-staffers say Twitter's mass firing of security staff and growing reliance on automation will help China and other authoritarian regimes in silencing critics (Adam Rawnsley/Rolling Stone)

Image
Adam Rawnsley / Rolling Stone : Ex-staffers say Twitter's mass firing of security staff and growing reliance on automation will help China and other authoritarian regimes in silencing critics   —  Elon's mass firing of security staff and increased reliance on automation is going to make it easier for tyrants to shout … from Techmeme https://ift.tt/xQsF2ef via IFTTT
Read more