Home GoAndroid Open Port Vulnerability Found in Android

Open Port Vulnerability Found in Android

Apr 29, 2017

If you have an Android device, you might be curious to learn about the new open port vulnerability that was just found in the app store. The open port vulnerability has been found to be in over 400 apps that are on Google Play Store. We have all of the latest news about the new open port flaw that is making millions of Android devices vulnerable to hackers.

Open Port Flaw Found in Over 400 Apps

The open port flaw has been found in 410 apps that are on Google Play Store, according to researchers from the University of Michigan. The open port flaw is basically where hackers have the ability to get malware into the apps and then steal various types of data from the Android devices that have these apps installed. If there are apps that have created these open ports, those apps are really where the problem is. While we know this is an issue that computers deal with, it is not something that is well-known in the smartphone world.

The researchers at the University of Michigan have developed their own scanning tool, which ended up scanning over 24,000 apps on Google Play Store. Out of those apps, there were 410 that did have this particular open port vulnerability. Even worse than that is that one of the apps that was flagged has been downloaded millions of times. This means that potentially millions of Android devices could be impacted by this flaw. There are a ton of privacy and security issues that could arise from this flaw. Photos, various security credentials, and even contacts could all be stolen using the open port vulnerability. Installing malware from a remote location and executing code arbitrarily could also be possible with this flaw.

Open Port Vulnerability Impacts WiFi

The biggest issue when it comes to the open port vulnerability is that it really seems to be an issue for Android devices over WiFi. Any Android device that uses an app where you connect via WiFi to access the data or content could be affected. Apps that would fall into this category include those that would allow you to transfer your files from your Android device to your computer and from your computer to your Android device. These types of file transfers are often done through WiFi, and that is where the open port flaw comes into play.

The real issue is that the security is not sufficient, which means that the ability to transfer or interfere with the file transfer is high. You do not have to even be the owner of the Android device to get the transfers to work. The particular program with millions of downloads is WiFi File Transfer, which is one of the biggest programs on Google Play Store in terms of popularity.

It is estimated that this app alone has been downloaded and installed between 10 and 50 million times. The University research team then did a port scan within the campus network, and they were able to find tons of Android devices that were using these types of apps vulnerable to the open port flaw.

The researchers went even further, confirming themselves that 57 out of the 410 apps on Google Play Store did have this vulnerability. The researchers then made some videos showing how the open port flaw works and how there was no authentication by the client needed to connect and engage. This right there would put those Android devices in danger of both hackers and various types of attacks.

The only way you can protect yourself if you have one of these 410 apps installed on your Android device is to uninstall it. Without you uninstalling it, your Android device will continue to be vulnerable to the open port flaw and potential hacks that can come from it.