Google partners with HackerOne for Android app flaw bug bounty

20 October, 2017, 02:18 | Author: Oscar Goodwin
  • Google Play Store Gets Another Update, Version Build Number [APK v8.3.72]

This is the main reason why Google keeps on releasing new updates to Play Services which contain numerous bug fixes. In just one other example in August, Google Play expelled at least three faux messaging apps it discovered were "capable of covertly taking photos, recording audio, retrieving call logs, and more".

The malware mostly targets users in the U.S., but it also has a presence in Russia, Ukraine, Brazil, and Germany.

The list of Android Instant Apps isn't massive, but Google has collated some into a focus on Google Play to make them easier to find.

In a blog October 18 Symantec said it had found at least eight Android applications on Google Play that were infected with a malware dubbed Sockbot that is created to add compromised systems to a botnet.

Aimoto wrote that the stated function of these apps was to provide the appearance of characters in Minecraft: Pocket Edition, behind the scenes attack functionality was enabled. These new features are announced amid Google's annual Playtime series, which is comprised of live and online events where developers can speak out about successful strategies and other aspects of the business that could help other developers. The Minecraft themed apps sitting in Google's official marketplace for mobile apps were laced with the Sockbot malware.

Google has also limited the vulnerabilities that qualify for bounties to remote code execution (RCE) on user devices running Android 4.4 or higher. The developers of popular Android applications on Google Play are being asked to opt-in to the program and to allow security researchers to probe their software for certain vulnerabilities.

As previously mentioned, the new update is available only in the APK form right now.

Android fans are advised to not waste any time and download the new update since Android Instant Apps is built on Google Play Services. "That is more than enough time for an attacker to exploit it", Rabet said. Google said bug bounties can go up to $1,000 per approved submission.

Recommended:

  • Verizon earnings: 98 cents a share, matching estimates

    Verizon earnings: 98 cents a share, matching estimates

    If you are viewing this report on another domain, it was copied illegally and reposted in violation of US & global copyright law. The company reported third quarter earnings of $37 billion, or 89 cents a share, with non-GAAP earnings of 98 cents a share.
    National Football League  fines Steelers' Mike Mitchell $48k for late hit on Alex Smith

    National Football League fines Steelers' Mike Mitchell $48k for late hit on Alex Smith

    Pittsburgh Steelers safety Mike Mitchell found a new way to lose a truckload of money this past weekend on the gridiron. On Monday, Mitchell said from Pittsburgh that he tripped and then was shoved by a teammate before hitting Smith .
    Donald Trump gives administration 10/10 for Puerto Rico response

    Donald Trump gives administration 10/10 for Puerto Rico response

    The president says the federal government has done a "really great job". "It is a catastrophic situation in Puerto Rico, as you know", Gov.
  • VW teases EV racer for next year's Pikes Peak International Hill Climb

    VW teases EV racer for next year's Pikes Peak International Hill Climb

    Volkswagen Motorsport is collaborating closely with the company's Technical Development arm to produce the auto . The current record for EV prototypes is 8 minutes and 57.118 seconds and was set by driver Rhys Millen in 2016.
    These Photos Of Playboy's First Transgender Playmate Are Stunning

    These Photos Of Playboy's First Transgender Playmate Are Stunning

    Althouh Rau is the first transgender playmate, she's not the first transgender model to appear in the pages of the mag. It's not the first time that nude photos of Ines Rau have made headlines. "I dated a lot and nearly forgot".
    Draymond Green's MRI comes back negative; Likely won't play Friday

    Draymond Green's MRI comes back negative; Likely won't play Friday

    An MRI on Green's strained left knee showed no structural damage, but the team is still doubting his availability for Friday. Losing their season opener won't really be a big deal for the defending champion Golden State Warriors moving forward.
  • Teammates impressed with Teddy Bridgewater in first day back

    Teammates impressed with Teddy Bridgewater in first day back

    Head coach Mike Zimmer said he wants to see Bridgewater demonstrate mobility and the ability to protect himself from defenders. The team has worked to ease the young quarterback back into action after he missed more than a year with a severe knee injury.
    NFL commissioner says players 'should stand for the national anthem'

    NFL commissioner says players 'should stand for the national anthem'

    For now, that means a continuing dialogue with players about social issues and no requirement that they stand for the anthem. NOTES: The 2018 draft will be held at the Dallas Cowboys' stadium in Arlington, Texas, from April 28-30.
    Hawley announces GM settlement brings around $2 million to Missouri

    Hawley announces GM settlement brings around $2 million to Missouri

    Nevada is one of 50 states that reached a $120 million settlement with General Motors Company over the defective ignition switch. The settlement concludes a lengthy investigation of GM's failure to disclose known safety defects in various vehicle models.
  • 'Fashion Police' To End After More Than 20 Years

    'Fashion Police' To End After More Than 20 Years

    E!'s long-running Fashion Police franchise will be taken off life support after one last hurrah on Monday, November 27. Rivers left E! for the TV Guide Channel, but returned in 2010 to formally launch Fashion Police in its current form.
    Krack targets WiFi, anyone is fair game

    Krack targets WiFi, anyone is fair game

    And then, check for security updates to any devices that are connected to your WiFi network, phones, TV's, game systems, etc. It's been named Krack and it means all wifi networks and the devices that connect to them are at risk.

    Notable Stock Analysts Ratings Cisco Systems, Inc. (CSCO)

    The rating was maintained by Credit Suisse with "Buy" on Thursday, June 29. (NASDAQ:CSCO) rating on Friday, February 12. By taking a look at the stock's current statistics it can gauged that the stock candle is BULLISH with LOW volatility.


Popular

Trump fires back after McCain attacks 'spurious nationalism'
McCain cast the deciding vote on the "skinny repeal" of Obamacare in July. "I like people who weren't captured", Trump said . President Donald Trump speaks to the press in the Rose Garden of the White House in Washington, D.C., October 16, 2017.

Storm Brian: WORSE than Ophelia - NI bracing itself for 'WEATHER BOMB'
A yellow wind warning has been issued and gusts of wind are expected to be in excess of 50 miles per hour. Scotland should escape the storm but will have scattered showers throughout the weekend.

Mayim Bialik Is Still Apologizing For Her Controversial Weinstein Op-Ed
Bialik in the author of the recently published book, "Girling Up: How to be Strong, Smart and Spectacular". Bialik appeared in a Facebook Live with the New York Times' Opinion on Monday, addressing the criticism.

Community Torn After Destiny 2's First Prestige Raid Is Cleared Using Glitches
Destiny 2's raid was released back in September, but the new "prestige" difficulty allows for a new race to be first. It was an intense race to first place for those trying to complete the new Destiny 2 Prestige Raid.

Wetter And Warmer: NOAA Issues Winter Weather Forecast
Spaccio said that for the Northeast overall, La NiƱa "can cause a stormier winter" but that doesn't necessarily mean more snow. Look for his winter weather forecast next Thursday. "It's a good area to head out to if you're a big skier", Pastelok said.