8/6/2023 0 Comments Shareit app![]() SuperBeam needs fewer taps and fewer manual approvals for connections making the file sharing convenient and faster. You can also make use of the NFC or manual sharing key. Pairing is easy, you need to scan the QR code for pairing and sharing. SuperBeam is one of the easiest, fastest, and most secure apps sharing large files between your devices using the WiFi direct. But since it’s banned in India, what are the alternatives to it? Here are the 5 best apps that you should use in place of SHAREit. However, unlike WhatsApp that doesn’t let you share the full quality photos and videos, the SHAREit app lets you share the original file without losing the quality. The SHAREit and Xender both are used to transfer files over the Wi-Fi connection in contrast to the WhatsApp file sharing. Among the most popular file-sharing apps that took a hit is the SHAREit alongside its rival Xender. We worked quickly to investigate this report, and on February 19, 2021, we released a patch to address the alleged vulnerabilities.After the Indian government bans a total of 59 Chinese smartphone apps in the country stating privacy concerns in the midst of coronavirus pandemic, people are looking for an alternative to these apps. "On February 15, 2021, we became aware of a report by Trend Micro about potential security vulnerabilities in our app. "We are fully committed to protecting user privacy and security and adapting our app to meet security threats. "The security of our app and our users’ data is of utmost importance to us," read a statement from the company. The SHAREit app, initially called 'anyshare,' was developed by teams at Lenovo, but was spun off in 2015 as part of a wider divestment of non-core businesses." Update: SHAREit responds "SHAREit is a product produced, distributed and maintained by the company uSHAREit. In response to our query, a Lenovo spokesperson provided Tom's Guide with this statement. Tom's Guide has reached out to both Smart Media4U Technology and Lenovo seeking comment, and we will update this story when we receive replies. Ltd., which is registered in Singapore but appears to have operations in India and Malaysia as well. It's not clear how ownership of the app passed from Lenovo to a company called Smart Media4U Technology Pte. A separate Lenovo security advisory from 2016 said SHAREit could result in "remote browsing of file system, and unauthorized access of files on Windows." Those sound a lot like the flaws cited by Trend Micro yesterday. The Android package name is still "," but Lenovo appears to have stopped supporting the app in 2017.Ī Lenovo security advisory from 2016 cited security issues with SHAREit, stating that "users with older Android versions may be vulnerable to remote code execution, or a UXSS attack and users with any Android version may be vulnerable to an intent scheme attack." Interestingly, SHAREit seems to have begun life as a Lenovo app pre-installed on Windows laptops and Lenovo phones. It'll catch almost everything that rogue apps will try to install. ![]() You'll also want to be running one of the best Android antivirus apps. Turn off that permission for every app but Google Play. To make sure you're safe from SHAREit flaws and similar attacks, go into Settings > Apps > Special app access > Install unknown apps and see how many apps have the power to install other apps on their own. Trend Micro's team showed they could install a malicious version of Twitter using this process. SHAREit saves downloaded games into an unprotected directory that any other Android app can access and write to. But it's possible the attack might work in other Android browsers. Trend Micro tried that out and found that the attack didn't work in Google Chrome because the browser detected suspicious behavior. But because the connection to SHAREit's app store is not secure, it would be trivial for an attacker to stage a man-in-the-middle attack to inject malicious code into the connection and redirect the link so that your phone downloads malware.Ī malicious link could even be embedded in a website. The SHAREit app can directly download and install games from its own app store, outside the Google Play store. "They can also potentially lead to Remote Code Execution (RCE)." "The vulnerabilities can be abused to leak a user's sensitive data and execute arbitrary code with SHAREit permissions by using a malicious code or app," said the Trend Micro report. But because SHAREit lets users send Android app installers to each other, an attacker might find that easy to achieve. The flaws in SHAREit would have to be leveraged by a malicious app or rogue code that was already installed on the Android device, the report said. The page currently states the last update was on Feb. Trend Micro showed a screenshot of the app's Google Play page, which indicated the last update then had been made on Jan.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |