![]() ![]() We can confirm all vulnerabilities were fixed. ![]() In this case, all three vendors worked with us in June and July to patch the flaws in their app before we published this report. VIPRE Mobile, AEGISLAB, and BullGuard all had flaws that could put user privacy and security at risk. XSS - Users of the AEGISLAB web dashboard were at risk of attackers inserting malicious code because of a vulnerable script XSS - Users of the BullGuard website were at risk of attackers inserting malicious code because of a vulnerable script IDOR - All users were vulnerable to an attacker remotely disabling their antivirus protection IDOR - All users were vulnerable to an attacker sending fake antivirus alerts IDOR - Premium users with address book sync enabled were at risk of having their contacts stolen We found misconfigured web services affecting three separate antivirus vendors: Note: Privacy Lab Antivirus & Mobile Security has since been removed from the Play Store Security In total, 47% of the vendors we tested failed in some way. We found serious security flaws in three of the apps we tested, and found eight apps that couldn’t detect a test virus. Ĭomodo Free Antivirus, VPN and Mobile SecurityĪntivirus Mobile - Cleaner, Phone Virus Scannerĭfndr security: antivirus, anti-hacking & cleaner Malwarebytes Security: Virus Cleaner, Anti-MalwareĪPUS Security - Clean Virus, Antivirus, BoosterĬom. ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |