Subscribe / Unsubscribe Enewsletters | Login | Register

Pencil Banner

Zero-day flaw in Google Admin app allows malicious apps to read its files

Lucian Constantin | Aug. 17, 2015
An unpatched vulnerability in the Google Admin application for Android can allow rogue applications to steal credentials that could be used to access Google for Work accounts.

The MWR researchers claim that they reported the vulnerability to Google on March 17, but even after granting the company an extension to the standard 90-day disclosure deadline, it still hasn't been fixed.

"No updated version has been released as of the time of publication," the MWR researchers said in the advisory.

Google did not immediately respond to a request for comment.

 

Previous Page  1  2 

Sign up for CIO Asia eNewsletters.