"Xiaomi's Phones Had a Security Flaw Preinstalled on Millions of Devices"

Smartphones made by Xiaomi, a Chinese technology company, were discovered by researchers from Check Point to contain a security vulnerability that could allow hackers to steal data, install tracking apps, and more. According to researchers, the vulnerability derives from a preinstalled security app, called Guard Provider. The app receives updates via an unsecured HTTP connection, thus allowing hackers to perform a man-in-the-middle attack in which malware is inserted into a user's smartphone through those updates once they are connected to the same Wi-Fi network as the attackers. This article continues to discuss the security flaw in Xiaomi phones and Xiaomi's response to the discovery of this vulnerability. 

CNET reports "Xiaomi's Phones Had a Security Flaw Preinstalled on Millions of Devices"

Submitted by Anonymous on