Google has pulled multiple Android apps that relied on a popular mobile app library that posed a severe security risk.
The ad library, codenamed “Vulna” (or Ap Vulna”) by FireEye, the net society firm that uncovered the threat, aggressively collects sensitive data as well as being able to perform dangerous operations such as phoning home to a command-and-control server before downloading and running secondary components on demand.
In the two weeks since the alarm about Vulna first went out, Google has removed numerous apps from Google Play that relied on the technology. It has also cancelled a number of Developer accounts, as a follow-up blog post on the issue by FireEye explains.
SOURCE: theregister.co.uk
About the Author
The opinions expressed in this post belongs to the individual contributors and do not necessarily reflect the views of Information Security Buzz.
