When you purchase through links on our site, we may earn an affiliate commission.Heres how it works.
Cybersecurity researchers fromMicrosoftfound a way for Androidmalwareto overwrite files in another, legitimate applications home directory.
The vulnerability stems from the wayAndroidtries to keep sensitive information, generated by different apps, secure.
When used correctly, a content provider provides a reliable solution.
The worst part is that improper implementations are too many to count.
Microsoft claims that it identified vulnerable applications in thePlay Storethat represented over four billion installations.
Microsoft notified these two companies of its findings, and both have already deployed fixes and mitigated the risks.
Furthermore,Googleupdated its app security guidance to reflect the findings, as well.
The vulnerability was dubbed Dirty Stream.
