Alert of malicious apps that take advantage of leaked Android vendor certificates to appear legitimate

File – Graphical representation of an Android army. – PIXABAY. – File, Archive

MADRID, Dec. 2 (Portaltic/EP) –

The seller certificates Android platform they have leakedwhich can lead to applications with ‘malware’ being distributed as legitimate by pretending to be from well-known brands, such as Samsung, with the same levels of privilege over the ‘smartphone’.

Android developers and vendors have a certificate for system application publishing that indicates that it is legitimate software and, depending on the level that has been granted, Grants certain access privileges to the phone.

Esper’s technical editor, Mishaal Rahmanhas alerted that some vendor certificates have been leaked, which are being used to sign malicious Android apps. The serious thing is that it affects one of the main Android manufacturers, Samsung, as can be seen on portals such as Virus Total or APK Mirror.

Malicious use of these certificates means that seemingly legitimate system apps they may actually be applications that contain some kind of ‘malware’, since they have the same privilege level as basic Android services.

According to Rahman, Google has advised affected manufacturers to try to use the certificates as little as possible, and to rotate the certificates while conducting an internal investigation. This can delay the arrival of some updates.

It is also advisable to download applications from the Google store or from the official store of the seller, since apparently this leak only affects those that require a manual download, not the updates that arrive wirelessly via OTA.

Related articles

The year is ending! These are the holidays for December 2023

By Yulexy AuquillaDecember 1, 2023 at 5:46 p.m.2023 is almost over and the last month of the year is always full of parties,...

New York: it hasn’t snowed in a long time and experts are already predicting...

NY It is one of the cities that can be seen the most in series and movies. Surely every person in the world...

Bukele takes leave of office to seek re-election

The Congress of El Salvador approved that Claudia Juana Rodríguez de Guevara, current private secretary of Nayib Bukele, occupy the Presidency while the president...