Advertisement
Top

Android app developers should update to Dropbox’s latest SDK

March 11, 2015

Via: application-security
Category:

#android apps that use #dropbox for #storage and are built using an older version of its #sdk are vulnerable to an attack that can steal data, although Dropbox has released a fix, according to IBM #security researchers.IBM’s #application security research team said Wednesday they had found a way to link their own Dropbox account to an Android app on another person’s phone that connects to the storage #service. After a successful attack, any data uploaded by the app is delivered to the attacker’s Dropbox account.

Dropbox publishes an SDK (software development kit) for linking its service to an app. The flaw, nicknamed “DroppedIn,” affected Dropbox SDK versions 1.5.4 through 1.6.1 and was fixed in version 1.62, IBM said in a blog post.

Read More

RELATED PUBLICATIONS

Vultur Android Banking Trojan Returns with Upgraded Remote Control Capabilities
API sprawl: navigating the web of connectivity and security challenges
China warns of fake digital currency wallets fleecing netizens

Latest Publications

Sweden’s liquor supply severely impacted by ransomware attack on logistics company
Autodesk Drive Abused in Phishing Attacks 
Google fixed critical Chrome vulnerability CVE-2024-4058
Security Curated Copyright © 2024. All rights reserved
Go to ITCurated!