Lumension® Endpoint Intelligence Center

Intelligence Center » News Archive » Scan of Google Play apps reveals thousands of secret keys

Scan of Google Play apps reveals thousands of secret keys

2014/06/19

Help Net Security - (International) Researchers with Columbia University used an automated tool called PlayDrone to scan, download, and decompile over 880,000 apps from the Google Play app store and found that several app developers often leave secret authentication keys embedded in the apps, potentially allowing attackers to steal user data or server resources, among other findings.

Source: http://www.net-security.org/secworld.php?id=17026

Note: This news synopsis is taken from the DHS Daily Open Source Infrastructure Report, a daily [Monday through Friday, except US Federal holidays] summary of open-source published information concerning significant critical infrastructure issues; a 10-day archive of the DOSIR can be found at: http://www.dhs.gov/dhs-daily-open-source-infrastructure-report.


Last Updated: 27 May 2016 10:20:37