Android 4.4 is PATCHED but earlier versions still vulnerable
IBM researchers have discovered a critical security vulnerability in Android 4.3 (Jelly Bean) and below which could allow attackers to exfiltrate sensitive information – credentials, private keys – from vulnerable devices. The vulnerability is found in Android’s secure storage service KeyStore, and can be misused to cause a stack-based buffer Continue Reading