Bundled OpenSSL Library Also Makes Apps and Android 4.1.1 Vulnerable to Heartbleed

Bundled OpenSSL Library Also Makes Apps and Android 4.1.1 Vulnerable to Heartbleed

We have found 273 in Google Play which are bundled with the standalone affected OpenSSL library, which means those apps can be compromised in any device. In this list, we see last year’s most popular games, some VPN clients, a security app, a popular video player, an instant message app, a VOIP phone app and many others. As you may well know, the OpenSSL library is used by apps for secure communications. Lots of apps are from top developers. We also found the vulnerability in the older versions of Google’s apps.

Enligt det här blogginlägget från Trend Micro är Heartbleed-buggen inte bara ett serverproblem.