قالب وردپرس درنا توس
Home / Technology / Epic Fortnite Android Installer Security Error Allowed Hackers to install malicious software silently

Epic Fortnite Android Installer Security Error Allowed Hackers to install malicious software silently



When Epic Games announced that it would not put its world-dominating Fortnite Android game on the Google Play store, everyone knew that Google would not be happy. Epic would not pay Google 30% of each purchase via the app, a move that could potentially cost Google $ 50 million. In fact, Google decided to take a very hard look at installer Epic Games used for Fortnite, and it found a major security error.

  fortnite android

Google revealed via Google Issue Tracker that the first Fortnite Installer was exposed to hijacking hackers. This vulnerability may allow the installation of any app on a user's phone and allow the hacker to install something in the background, including fully licensed applications provided without the user knowing. Google revealed the issue privately to Epic Games August 1

5th. The information that was released to the public is revealed now, ten days later, because Epic has patched the error.

  Fortnite

The original installer was downloaded by Fortnite installer first, a simple app that then downloaded the entire game directly from Epic. This installer was easily utilized by Google, as hackers could hijack the request to download Fortnite from Epic to download something when you downloaded the download game button via a man-in-middle attack. The epic downloader would not indicate that something was wrong with this attack. The installer downloaded a beautiful app instead of Fortnite for Android, it would launch malware with a click on the "launch" button.

  archers

However, to take advantage of the Fortnite installer error, a user would have to have a malicious app on their device already looking for this type of vulnerable software. With great attention that Fortnite came to Android and the game's massive popularity, there is a big chance that apps were out there looking for this type of problem. Android Permissions Standard Operating Procedures means that you would not be prompted to download an app from "unknown sources" because you had already agreed to install Fortnite.

Fortnite Android was a Samsung device exclusive for a short while, and all these downloads were made through the Galaxy Apps store. Reports indicate that people downloaded via Galaxy Apps were worse than those who caught the installer directly from Epic. When downloading via Galaxy Apps, users were never asked for the first time to allow downloads from "unknown sources" because Galaxy Apps is a known source. The big sparkle here is since it was a known source, all you downloaded will be given all permissions without future consent, including malware.

Epic notes that it resolved this utilized less than 48 hours after Google revealed it. Users who installed before the update must update the installer that you want to update other apps. The patched version of Fortnite installer is 2.1.0. Verification of the version is available in the Fortnite Installer Setup menu. Google's efforts here protect protected Android users, while users who move as the one Epic designed to bypass the Google Store, sometimes take a trip to worse.


Source link