New Delhi: A bug in Android<\/a> file sharing app SHAREit<\/a> which has been downloaded over 1 billion times in Google Play Store<\/a> contains several unpatched vulnerabilities<\/a> that can be abused by hackers to leak sensitive data<\/a> of its users.

The bugs can be exploited to run malicious code on smartphones where the SHAREit app is installed, according to a new report by cyber security firm Trend Micro.

Now banned in India, SHAREit was one of the most downloaded applications in 2019, which means millions of Indian users may also be at data leaking risk.

\"We discovered several vulnerabilities in the application named SHAREit. The vulnerabilities can be abused to leak a user's sensitive data and execute arbitrary code with SHAREit permissions by using a malicious code or app,\" said Echo Duan, a security researcher with Trend Micro.

\"They can also potentially lead to Remote Code Execution (RCE). In the past, vulnerabilities that can be used to download and steal files from users' devices have also been associated with the app,\" he said in a statement late on Monday.

While the app allows the transfer and download of various file types, such as Android Package (APK), the vulnerabilities related to these features are most likely unintended flaws.

The security researchers have reported these vulnerabilities to the vendor, who has not responded yet.

\"We decided to disclose our research three months after reporting this since many users might be affected by this attack because the attacker can steal sensitive data and do anything with the apps' permission. It is also not easily detectable,\" Trend Micro elaborated.

SHAREit was part of the first lot of 59 Chinese apps that were temporarily banned in India in June last year. In January, the Union Government decided to permanently ban those 59 Chinese mobile applications.

\"Security should be a top consideration for app developers, enterprises, and users alike. For safe mobile app use, we recommend regularly updating and patching mobile operating systems and the app themselves,\" Trend Micro said.

<\/p><\/body>","next_sibling":[{"msid":80976768,"title":"Australia to amend laws to make Google and Facebook pay","entity_type":"ARTICLE","link":"\/news\/australia-to-amend-laws-to-make-google-and-facebook-pay\/80976768","category_name":null,"category_name_seo":"telecomnews"}],"related_content":[],"msid":80977784,"entity_type":"ARTICLE","title":"Bug in SHAREit Android app can get your data hacked","synopsis":"A bug in Android file sharing app SHAREit which has been downloaded over 1 billion times in Google Play Store contains several unpatched vulnerabilities that can be abused by hackers to leak sensitive data of its users.","titleseo":"telecomnews\/bug-in-shareit-android-app-can-get-your-data-hacked","status":"ACTIVE","authors":[],"analytics":{"comments":0,"views":329,"shares":0,"engagementtimems":1105000},"Alttitle":{"minfo":""},"artag":"IANS","artdate":"2021-02-16 14:23:07","lastupd":"2021-02-16 14:24:11","breadcrumbTags":["SHAREit","data leak","Android app","security hackers","Android","Sensitive data","google play store","vulnerabilities","MVAS\/Apps"],"secinfo":{"seolocation":"telecomnews\/bug-in-shareit-android-app-can-get-your-data-hacked"}}" data-authors="[" "]" data-category-name="" data-category_id="" data-date="2021-02-16" data-index="article_1">

虫砍SHAREit Android应用程序可以让你的数据

缺陷在安卓文件共享应用SHAREit已被下载超过10亿次在谷歌播放存储包含几个补丁可以被黑客泄漏用户的敏感数据。

  • 2021年2月16日更新是02:24点
阅读: 100年行业专业人士
读者的形象读到100年行业专业人士

新德里:一个bug安卓文件共享应用程序SHAREit已被下载超过10亿次谷歌播放存储包含几个应用补丁的漏洞可以被黑客泄漏敏感数据它的用户。

细菌可以利用智能手机上运行恶意代码的SHAREit安装应用程序,根据一项新的报告,趋势科技网络安全公司。

现在禁止在印度,SHAREit之一2019年大多数下载应用程序,这意味着数以百万计的印度用户也可以在数据泄漏的风险。

“我们发现几个应用程序中的漏洞SHAREit命名。漏洞可以被滥用泄漏用户的敏感数据和执行任意代码SHAREit权限通过恶意代码或应用程序,”段呼应说,趋势科技安全研究人员。

广告
“他们还会可能导致远程代码执行(远端控制设备)。在过去,漏洞,可用于从用户的下载和窃取文件与应用程序相关联的设备也已”,他周一晚间在一份声明中说。

而应用程序允许转让和下载各种文件类型,如Android包(上年),与这些功能相关的漏洞最有可能意想不到的缺陷。

安全研究人员报道这些弱点供应商,谁还没有回应。

“我们决定公开我们的研究报告三个月后这因为很多用户可能会受到这种攻击,因为攻击者可以窃取敏感数据和做任何应用程序的权限。它也不容易察觉,“趋势微了。

SHAREit是第一批59的一部分中国应用暂时禁止在印度去年6月。今年1月,欧盟政府决定永久禁止那些59中国移动应用程序。

“安全应该考虑应用程序开发者,企业和用户的喜爱。安全移动应用程序的使用,我们建议定期更新和修补移动操作系统和应用程序本身,“Trend Micro说。

  • 发布于2021年2月16日下午02:23坚持
是第一个发表评论。
现在评论

加入2 m +行业专业人士的社区

订阅我们的通讯最新见解与分析。乐动扑克

下载ETTelec乐动娱乐招聘om应用

  • 得到实时更新
  • 保存您最喜爱的文章
扫描下载应用程序

New Delhi: A bug in Android<\/a> file sharing app SHAREit<\/a> which has been downloaded over 1 billion times in Google Play Store<\/a> contains several unpatched vulnerabilities<\/a> that can be abused by hackers to leak sensitive data<\/a> of its users.

The bugs can be exploited to run malicious code on smartphones where the SHAREit app is installed, according to a new report by cyber security firm Trend Micro.

Now banned in India, SHAREit was one of the most downloaded applications in 2019, which means millions of Indian users may also be at data leaking risk.

\"We discovered several vulnerabilities in the application named SHAREit. The vulnerabilities can be abused to leak a user's sensitive data and execute arbitrary code with SHAREit permissions by using a malicious code or app,\" said Echo Duan, a security researcher with Trend Micro.

\"They can also potentially lead to Remote Code Execution (RCE). In the past, vulnerabilities that can be used to download and steal files from users' devices have also been associated with the app,\" he said in a statement late on Monday.

While the app allows the transfer and download of various file types, such as Android Package (APK), the vulnerabilities related to these features are most likely unintended flaws.

The security researchers have reported these vulnerabilities to the vendor, who has not responded yet.

\"We decided to disclose our research three months after reporting this since many users might be affected by this attack because the attacker can steal sensitive data and do anything with the apps' permission. It is also not easily detectable,\" Trend Micro elaborated.

SHAREit was part of the first lot of 59 Chinese apps that were temporarily banned in India in June last year. In January, the Union Government decided to permanently ban those 59 Chinese mobile applications.

\"Security should be a top consideration for app developers, enterprises, and users alike. For safe mobile app use, we recommend regularly updating and patching mobile operating systems and the app themselves,\" Trend Micro said.

<\/p><\/body>","next_sibling":[{"msid":80976768,"title":"Australia to amend laws to make Google and Facebook pay","entity_type":"ARTICLE","link":"\/news\/australia-to-amend-laws-to-make-google-and-facebook-pay\/80976768","category_name":null,"category_name_seo":"telecomnews"}],"related_content":[],"msid":80977784,"entity_type":"ARTICLE","title":"Bug in SHAREit Android app can get your data hacked","synopsis":"A bug in Android file sharing app SHAREit which has been downloaded over 1 billion times in Google Play Store contains several unpatched vulnerabilities that can be abused by hackers to leak sensitive data of its users.","titleseo":"telecomnews\/bug-in-shareit-android-app-can-get-your-data-hacked","status":"ACTIVE","authors":[],"analytics":{"comments":0,"views":329,"shares":0,"engagementtimems":1105000},"Alttitle":{"minfo":""},"artag":"IANS","artdate":"2021-02-16 14:23:07","lastupd":"2021-02-16 14:24:11","breadcrumbTags":["SHAREit","data leak","Android app","security hackers","Android","Sensitive data","google play store","vulnerabilities","MVAS\/Apps"],"secinfo":{"seolocation":"telecomnews\/bug-in-shareit-android-app-can-get-your-data-hacked"}}" data-news_link="//www.iser-br.com/news/bug-in-shareit-android-app-can-get-your-data-hacked/80977784">