LG is the app Update Center at its current Android devices do give an update to close the SSL leak. So says the manufacturer in a reaction against Tweakers. It is the first time that the manufacturer says its Update Center to fix on all devices.
The response acknowledges the South Korean manufacturer leak, but qualifies that not all devices are susceptible to man-in -the-middle attack. “At the end of March this year, the leak and all devices running Android 5.0 or later require the proper SSL certificate before installing an application,” said the manufacturer at Tweakers.
That leaves the leak still open for all LG devices with Android 4.4 or lower. Before coming, contrary to what the manufacturer said previously, a fix for all LG handsets. “We are currently preparing the software patch, which will be rolled out over the coming weeks.”
LG’s Update Center, which the manufacturer’s own apps will update to Android phones, showed the SSL server certificate where the The app collects no control, allowing an attacker an app with malware can get onto the phone via a hijacked connection. It is unknown whether the leak has been abused active.
No comments:
Post a Comment