Table of Contents
A popular file-sharing request,ShareIt,continues to pose a significant security risk to users,even after being banned by Indian authorities several months ago due to national security concerns. Cybersecurity firm Trend Micro has discovered critical vulnerabilities within the app that could allow malicious actors to steal sensitive data and perhaps gain control of user devices.
The Indian government initially prohibited ShareIt, along with dozens of other Chinese applications, citing threats to “sovereignty and integrity of India, defense of India, the security of the state and public order.” Despite being removed from the Google Play store, many users circumvented the ban by downloading the app from third-party sources, unknowingly exposing themselves to potential cyberattacks.
Trend Micro’s investigation revealed that the vulnerabilities stem from the app’s handling of file transfers, specifically those involving Android Package (APK) files. According to the firm, these flaws are likely unintentional but can be exploited to devastating effect.
“The vulnerabilities can be abused to leak a user’s sensitive data and execute arbitrary code with ShareIt permissions by using a malicious code or app,” a Trend Micro report states.The firm believes a triumphant exploit could lead to Remote Code Execution (RCE),granting attackers complete control over the compromised device.
Trend Micro alerted ShareIt to these security issues three months ago but has yet to receive a response. This lack of engagement prompted the firm to publicly disclose its findings, fearing widespread exploitation.
“We decided to disclose our research three months after reporting this since many users might be affected by this attack because the attacker can steal sensitive data and do anything with the apps’ permission. It is also not easily detectable,” the firm explained.
Google Notified, Users Urged to Uninstall
Recognizing the severity of the threat, Trend Micro has also informed Google about the app’s vulnerabilities and is awaiting action from the tech giant. In the meantime, the firm strongly advises users who have downloaded ShareIt from unofficial sources to uninstall the application promptly.
Fortunately, several secure alternatives are available for file sharing. Users can utilize Google’s Files Go, File Dash on OnePlus devices, or AirDrop for iPhone users.
The ongoing situation highlights the risks associated with downloading applications from untrusted sources and the importance of staying vigilant against potential cybersecurity threats. Users should prioritize security and opt for well-established, reputable applications whenever possible.
why: Trend Micro discovered critical vulnerabilities in the ShareIt app that could allow attackers to steal data and gain control of user devices.
Who: Trend Micro, ShareIt, Google, Indian authorities, and ShareIt users are involved.
What: The cybersecurity firm identified flaws in ShareIt’s handling of file transfers, specifically APK files, leading to potential Remote Code Execution (RCE).
How did it end?: Trend Micro publicly disclosed the vulnerabilities after ShareIt failed to respond to their initial report three months ago. They also notified Google and are urging users who downloaded ShareIt from unofficial sources to uninstall the app. The situation remains ongoing as Google has yet to take action, and the app continues to be a risk for those using unofficial versions.
