The popular file-sharing app SHAREit has been found to have security flaws that are making users vulnerable to online attacks. According to a recent report, the vulnerabilities detailed could theoretically grant a remote attacker the ability to access and manipulate data on a user’s device using ShareIt’s permissions. The security firm demonstrates that attackers could use ShareIt’s trusted functions to run malicious commands or install third-party apps. The security flaws could also allow an attacker to replace other apps’ resources on a user’s device, seemingly swapping a legitimate app for a bogus replacement.
According to Trend Micro, Google has been informed about the vulnerabilities. The Developers at Trend Micro also delved into the code of SHAREit’s Android app to find the vulnerabilities. They said that these flaws can allow any third-party entity to gain temporary read/write access to the data of the content provider. Further, it said that files in a specific folder can be freely accessed by anyone as the developer has specified a wide storage area root path. Hackers can also install third-party apps secretly on a phone due to these flaws in ShareIt. This can also be used to install a malicious app on an infected smartphone.
SHAREit is also susceptible to a man-in-the-disk (MITD) attack, the report said. This is because when a user downloads the app in the download center, it goes to an external directory, which means any app can access it with SDcard write permission.
Researchers at Trend Micro even mimicked a hack, after which the publication informed SHAREit about the vulnerability. SHAREit has not responded to the publication even after three months of the vulnerabilities being spotted.
“We decided to disclose our research three months after reporting this since many users might be affected by this attack because the attacker can steal sensitive data and do anything with the apps’ permission. It is also not easily detectable,”
Trend Micro said.