1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Certifi-gate flaw in Android remote support tool exploited by screen recording app

Discussion in 'Network World' started by RSS, Aug 25, 2015.

  1. RSS

    RSS New Member Member

    An application available in the Google Play store until yesterday took advantage for months of a flaw in the TeamViewer remote support tool for Android in order to enable screen recording on older devices.

    The app's developer discovered the vulnerability independently from security researchers from Check Point Software Technologies who presented it earlier this month at the Black Hat security conference along with similar flaws in other mobile remote support tools.

    The Check Point researchers dubbed the issues Certifi-gate because they stem from failures to properly validate the digital certificates of remote support apps that are supposed to communicate with privileged plug-ins installed in the system.

    To read this article in full or to leave a comment, please click here

    Continue reading...
     

Share This Page