Glitch in Dropbox SDK for Android Links Apps to Attacker’s Cloud Storage

43

A vulnerability found in Dropbox SDK for Android can be exploited by an attacker to cause apps using the software development kit for Dropbox synchronization to upload the data to an unauthorized account.

Security researchers warn that the flaw can be exploited through a malicious app installed on the mobile device or remotely, through drive-by attacks.

However, the attack is not successful if the Dropbox app is installed on the mobile device, even if it is not configure… (read more)

Read more at Softpedia News