『The SDK Silent Alarm: How a Flaw in EngageLab Put 50 Million Android Devices at Risk』のカバーアート

The SDK Silent Alarm: How a Flaw in EngageLab Put 50 Million Android Devices at Risk

The SDK Silent Alarm: How a Flaw in EngageLab Put 50 Million Android Devices at Risk

無料で聴く

ポッドキャストの詳細を見る

今ならプレミアムプランが3カ月 月額99円

2026年5月12日まで。4か月目以降は月額1,500円で自動更新します。

概要

 What if a single, invisible component inside hundreds of popular apps was silently leaking your data? This week, researchers revealed a critical vulnerability in the EngageLab SDK, a common piece of code used by developers for push notifications, that exposed an estimated 50 million Android users to potential data theft and account takeover. We dive deep into the mechanics of this now-patched flaw, exploring how it could have allowed attackers to intercept sensitive information, including from an estimated 30 million cryptocurrency wallets. The episode examines the pervasive risk of third-party SDKs—the hidden building blocks of our apps—and why their security often falls through the cracks of both developer and user awareness. Listeners will learn the critical questions to ask about the apps on their devices, understand the supply chain risks in modern software development, and discover strategies for mitigating the threat of "silent partners" in their digital tools. The convenience of an app often comes with unseen dependencies, and this breach is a stark reminder to audit the foundations, not just the facade. #EngageLabSDK #AndroidSecurity #SupplyChainAttack #CryptoSecurity #MobileThreat #ThirdPartyRisk #DataBreach Hosted by Ibnul Jaif Farabi. Produced by Light Knot Studios (lightknotstudios.com).
adbl_web_anon_alc_button_suppression_c
まだレビューはありません