Most of us know Heartbleed as a bug that affected websites and web servers, but Android 4.1.1 also uses the vulnerable version of OpenSSL. In other words, some Android smartphone and tablets are vulnerable to Heartbleed attacks. What’s the Risk? Heartbleed has been used to attack various web servers. In a nutshell, servers running the vulnerable version of OpenSSL have a bug in their encryption that can be exploited. By sending specially crafted packets, attackers can force the web server to respond with chunks of its working memory. This working memory can contain sensitive passwords, private encryption keys, and other...
Read the full article: Heartbleed Isn’t Just a Desktop Problem – Your Android Could Be A Risk
Aucun commentaire:
Enregistrer un commentaire