Android app that s been downloaded more than 1 billion times is riddled with flaws that can let attackers hijack app features or overwrite existing files to execute malicious code. The flaws exist in an app called SHAREit, which allows Android app users to share files between friends or devices. They were identified and reported to the app maker three months ago, but the flaws remain unpatched, Trend Micro says. Attackers can exploit the app’s permissions to take over legitimate features, overwrite existing app files or even take over Android storage shared by multiple apps to launch man-in-the-disk attacks.
Source: https://threatpost.com/unpatched-android-app-billion-downloads-malware/163976/