Google has published a list of unsafe Android-applications
Response Coordination Centre cyberthreats together with the Institute program at Carnegie Melloun published a list of unsafe applications for devices running Android.
The list includes 350 of legitimate applications distributed officially via Google Play and Amazon. They do not carry out proper verification of digital certificates by using SSL protocol secure connection HTTPS. This gives potential attackers launch attacks on the type of Man in the middle, where the cybercriminal can intercept and modify messages exchanged between the parties.
Author of the project, the researcher Will Dorman, said tool for testing applications to be protected from attacks Man in the middle was developed only at the end of August. Therefore investigated so far only a small part of the application, and a list of 350 names is not final. Dorman also said that the authors of the project shall notify vulnerabilities found both developers and Google play and Amazon.
Response Coordination Centre cyberthreats together with the Institute program at Carnegie Melloun published a list of unsafe applications for devices running Android.
The list includes 350 of legitimate applications distributed officially via Google Play and Amazon. They do not carry out proper verification of digital certificates by using SSL protocol secure connection HTTPS. This gives potential attackers launch attacks on the type of Man in the middle, where the cybercriminal can intercept and modify messages exchanged between the parties.
Author of the project, the researcher Will Dorman, said tool for testing applications to be protected from attacks Man in the middle was developed only at the end of August. Therefore investigated so far only a small part of the application, and a list of 350 names is not final. Dorman also said that the authors of the project shall notify vulnerabilities found both developers and Google play and Amazon.
