Save up to $1,100 on Galaxy S24 Ultra!
Amazon Black Friday is here
The Amazon Black Friday deals are here early, enjoy the best discounts of the year now.
00 days
00 hrs
00 mins

Google found that the Fortnite installer could load malicious apps on an Android phone

By
8comments
Google News Follow
Follow us on Google News
Android Software updates Apps Games Google
Google found that the Fortnite installer could load malicious apps on an Android phone
Back on August 15th, Google needed to get in touch with Epic Games, the developer of Fortnite. A serious flaw was discovered with the Fortnite installer for Android that required a patch to be sent out stat. How serious an issue was this? Consider that with the Fortnite installer loaded on an Android handset, a malicioius app could be installed on the device at the direction of a hacker.

Google even provided Epic with a video that showed Fortnite installed on a Samsung handset using the Fortnite installer. When the game was opened, a malicious app would launch instead of the game. According to the Google Issue Tracker, the installer allow these fake APK's to be installed on an Android phone as long as they carried the package name of com.epicgames.fortnite.

On August 17th, Epic pushed out version 2.1 of the Fortnite installer, which fixed the vulnerability by changing the APK storage directory from external to internal. Epic requested a 90 day period before disclosing what had happened behind the scenes. It requested this delay in order to allow all users to update to the new version of the installer. However, Google lifted all restrictions after seven days, which is the company's standard disclosure practice.

"On Samsung devices, the Fortnite Installer performs the APK install silently via a private Galaxy Apps API. This API checks that the APK being installed has the package name com.epicgames.fortnite. Consequently the fake APK with a matching package name can be silently installed...If the fake APK has a targetSdkVersion of 22 or lower, it will be granted all permissions it requests at install-time. This vulnerability allows an app on the device to hijack the Fortnite Installer to instead install a fake APK with any permissions that would normally require user disclosure."-Google Issue Tracker

Recommended Stories
As we previously told you, in order to save the 30% cut of revenue that it would have to pay Google to have Fortnite listed in the Play Store, Epic has decided to have Android users sideload the app using the installer. Seems to us that Google might have earned the opportunity to list the game after all.

source: Google
https://m-cdn.phonearena.com/images/users/39-200/Alan-F.jpg
Alan Friedman Mobile Tech News Journalist
Alan, an ardent smartphone enthusiast and a veteran writer at PhoneArena since 2009, has witnessed and chronicled the transformative years of mobile technology. Owning iconic phones from the original iPhone to the iPhone 15 Pro Max, he has seen smartphones evolve into a global phenomenon. Beyond smartphones, Alan has covered the emergence of tablets, smartwatches, and smart speakers.

Recommended Stories

Loading Comments...

Popular stories

T-Mobile introduces welcome change for iPhone users
T-Mobile introduces welcome change for iPhone users
Time has come to say goodbye to T-Mobile app after 12 years
Time has come to say goodbye to T-Mobile app after 12 years
AT&T wants to shut down a network with only 52 users (UPDATE: AT&T responds)
AT&T wants to shut down a network with only 52 users (UPDATE: AT&T responds)
People are hearing voices coming from their iPhone
People are hearing voices coming from their iPhone
This better not be happening: YouTube Premium users are seeing ads
This better not be happening: YouTube Premium users are seeing ads
Best Buy is now selling the 512GB OnePlus 12 flagship at its killer Black Friday price
Best Buy is now selling the 512GB OnePlus 12 flagship at its killer Black Friday price

Latest News

Amazon slashes the 512GB Galaxy S24 Ultra by $350 for Black Friday, making it a can't-miss offer
Amazon slashes the 512GB Galaxy S24 Ultra by $350 for Black Friday, making it a can't-miss offer
Surprise Amazon Black Friday deal slashes more than $250 off the cheapest Pixel 9 model
Surprise Amazon Black Friday deal slashes more than $250 off the cheapest Pixel 9 model
Sizzling hot Black Friday 2024 deal makes Apple's 2022 iPad cheaper than ever before
Sizzling hot Black Friday 2024 deal makes Apple's 2022 iPad cheaper than ever before
Oppo Find X8 Series goes global with new Hasselblad camera system, ColorOS 15
Oppo Find X8 Series goes global with new Hasselblad camera system, ColorOS 15
T-Mobile proves its mettle against Verizon and AT&T by doing for customers what rivals were unable to
T-Mobile proves its mettle against Verizon and AT&T by doing for customers what rivals were unable to
Apple releases iPhone and iPad security updates you should install ASAP
Apple releases iPhone and iPad security updates you should install ASAP
FCC OKs Cingular\'s purchase of AT&T Wireless