Security bugs left unpatched in Android app with one billion downloads

An Android application downloaded more than one billion times contains unpatched vulnerabilities that the app maker has failed to fix for more than three months.

The vulnerabilities impact the Android version of SHAREit, a mobile app that allows users to share files with friends or between personal devices.

The bugs can be exploited to run malicious code on smartphones where the SHAREit app is installed, Echo Duan, a mobile threats analyst for security firm Trend Micro, said in a report on Monday.

Read more…
Source: ZDNet