Doctor Web has detected a hidden ability to download and run unverified code in the UC Browser mobile browser for Android devices.
UC Browser is very popular. Thus, the number of its downloads from the Google Play store exceeds 500 million. To work with the program, the operating system Android 4.0 or higher is required.
Doctor Web's experts found out that the browser has a hidden ability to download auxiliary components from the Internet. The application is able to download additional software modules, bypassing the Google Play servers, which violates the rules of Google Corporation. This feature can theoretically be used by attackers to distribute malicious code.
βDespite the fact that the application has not been seen to distribute Trojans or unwanted programs, its ability to download and run new and unverified modules is a potential threat. There is no guarantee that attackers will not gain access to the browser's developer's servers and use the browser's built-in update function to infect hundreds of millions of Android devices, Doctor Web warns.
This add-on download feature has been present in UC Browser since at least 2016. It can be used to organize attacks according to the Man in the Middle scheme with interception of requests and substitution of the address of the control server. More information about the problem can be found here.
Source: 3dnews.ru