ShareIt, the popular file sharing Android app, which was last week highlighted by cybersecurity firm Trend Micro for having multiple vulnerabilities. Now, the company has issued a statement confirming that the issue has been fixed.
To recall, the report by Trend Micro had stated, “the vulnerabilities can be abused to leak a user’s sensitive data and execute arbitrary code with ShareIt permissions by using a malicious code or app.” Hackers could even use the vulnerabilities in the ShareIt app to download and steal files from a user’s phone as the vulnerabilities came with a potential lead to Remote Code Execution (RCE), the report had added.
Now, ShareIt has responded to the situation assuring its users that the raised issues have now been fixed.
“On February 15, 2021, we became aware of a report by Trend Micro about potential security vulnerabilities in our app. We worked quickly to investigate this report, and on February 19, 2021, we released a patch to address the alleged vulnerabilities,” said the company in a statement.
The company had, however, not responded to Trend Micro. The research agency had said that they had reported the issues to ShareIt but did not receive any response. “We decided to disclose our research three months after reporting this since many users might be affected by this attack because the attacker can steal sensitive data and do anything with the apps’ permission,” it had warned.
ShareIt app has over 1 billion users and was even one of the most downloaded apps in 2019.
Read original article here