Security News > 2016 > September > Android apps based on Adobe AIR SDK send out unencrypted data (Help Net Security)
2016-09-15 18:12
Developers using the Adobe AIR SDK should update to the latest version of the software development kit and rebuild the apps as soon as possible if they don’t want their users’ traffic being exposed to attackers. The flaw, discovered by Nightwatch Cybersecurity researchers while monitoring network traffic during testing of some Android applications, directs runtime analytics for AIR applications to several Adobe servers. Unfortunately, that traffic is unencrypted. “Because encryption is not used, this would … More →
News URL
http://feedproxy.google.com/~r/HelpNetSecurity/~3/rQGgIxv5wWc/
Related news
- Two Actively Exploited Security Flaws in Adobe and Oracle Products Flagged by CISA (source)
- Qualcomm pledges 8 years of security updates for Android kit using its chips (YMMV) (source)
- Google's March 2025 Android Security Update Fixes Two Actively Exploited Vulnerabilities (source)
- Android Malware Exploits a Microsoft-Related Security Blind Spot to Avoid Detection (source)