Android SDK Flaw Exposes Millions of Crypto Wallets to Data Theft

A recently discovered security vulnerability in a widely used Android software development kit (SDK) has left millions of cryptocurrency wallets vulnerable to data theft.

The 'intent redirection' flaw, which affects the EngageLab SDK, allows malicious applications to bypass Android's core security sandbox and access sensitive financial data stored in private directories.

According to Microsoft's research team, over 30 million installations of affected third-party crypto wallet applications were identified, with up to 50 million users potentially at risk.