The Android app warnings usually come from malware-filled applications that have managed to sneak onto the Google Play Store but this latest threat is a little different. The new warning actually comes from Twitter with the social media company confirming that a flaw in its Android app could leave users open to attack from hackers.
Although it appears the vulnerability hasn’t yet been exploited it’s serious enough for Twitter to ask Android users to update their apps immediately to the very latest version.
This will fix the bug which could allow other malicious apps to access private Twitter data including personal information and even direct messages.
The threat only affects users who are running Android 9 or Android 8 on their devices – the latest version of Android (Android 10) is not impacted by the flaw.
Explaining more on its blog, Twitter said: “We recently discovered and fixed a vulnerability in Twitter for Android related to an underlying Android OS security issue affecting OS versions 8 and 9. Our understanding is 96% of people using Twitter for Android already have an Android security patch installed that protects them from this vulnerability.
“For the other 4%, this vulnerability could allow an attacker, through a malicious app installed on your device, to access private Twitter data on your device (like Direct Messages) by working around Android system permissions that protect against this.”
Twitter has confirmed that anyone it thinks is running an older version of the app should receive an in-app notice saying they could have been vulnerable with an alert also explaining if they need to do anything.
The news of this latest Android threat comes as Google has started to roll out improved filters within its Play Store to help users sort through the dizzying number of apps available.
Given the fact that threats from dangerous Android apps have doubled since last year, these tools could be an ingeniously simple way to sort through the apps revealed by every search.
The new search filters let Android users sort apps based on their rating – scores submitted by users who have already installed and used the software, new – for the most recent additions to the Play Store, and premium apps – those that cost money to download or offer in-app purchases.
Now more than ever, Android smartphone owners need to be vigilant of what they’re downloading from the Google Play Store and other popular app repositories for their handset or tablet.
Google is aware of the issue and founded the App Defence Alliance late last year with the help of security companies like ESET, Lookout, and Zimperium to help detect bad apps before they land on shelves in the Play Store. Android now runs on over 2.5 billion devices, which makes it an immensely attractive target for bad actors looking to make money.
Published at Thu, 06 Aug 2020 06:09:00 +0000