Blog | G5 Cyber Security

Understanding the Android “master key”” vulnerability”

Bluebox Labs has announced a vulnerability in Androids code for cryptographic signature verification and app installation. They are planning to publicly disclose the details in their upcoming BlackHat US talk. Google has patched this vulnerability and some of the vendors have already started picking it up. The vulnerability details are expected to be publicly disclosed by BlueBox Labs at the upcoming Black Hat USA conference. Do you need to worry? If you follow the best practises and you only install apps from Google play and you pay attention to the author details then you are very very unlikely to be affected by this, as the attacker would have to bypass several security measures.”]

Source: https://securityintelligence.com/understanding-the-android-master-key-vulnerability/

Exit mobile version