Dirty Stream Vulnerability in Popular Android Apps Exposes Millions of Users to Malicious Attacks

Microsoft has issued an alert regarding a pattern of vulnerabilities found in several popular Android apps that are installed on over 4 billion devices. This vulnerability, known as “Dirty Stream,” allows cybercriminals to execute malicious code and steal login tokens.

Researchers began notifying developers of this vulnerability in February, and updates have been released to address the issue. Microsoft is raising awareness of this vulnerability to prevent developers from introducing it into their Android apps. Examples of affected apps include Xiaomi File Manager and VPS Office, which have been successfully patched.

The vulnerability resides in the data and file sharing system on Android devices. The content provider system is used to exchange data between applications, but incorrect implementation can lead to vulnerabilities. This can allow malicious actors to bypass security measures and gain control of the application.

Microsoft is working with Google to provide guidance to Android developers to recognize and avoid this pattern of vulnerabilities. They recommend using the Android App Security Guide and the Android Lint tool to identify vulnerabilities. Users are advised to update their apps and devices to protect themselves from this vulnerability.