We all know that Epic Games, the developer of the super popular Fortnite, decided not to make the game available through the Play Store. Google warned the developers for not doing that as this can lead Android users at greater security risks. They didn’t give Google the cut-in App revenue. Recently, Google pointed out a flaw in Fortnite Installer App for Android that can leave the Android devices more open to attacks.
The Vulnerability in Fortnite Installer App for Android makes it more prone to hacking
Google discovered an exploit within the Fortnite installer app. The exploit allows the malicious apps installed on the user’s Android phone to hijack the download process. It stops downloading the game from Epic’s server and redirects to download and install something entirely different. The malicious material downloaded potentially leaves the device open to attacks.
Google first discovered the vulnerability inside of the Fortnite installer app on Aug 15. They immediately notified Epic. Within 48 hours, Epic patched the Fortnite installer. They asked Google not to disclose the details of the exploit until after 90 days. Google bug disclosure guideline stated that:
“This bug is subject to a 90-day disclosure deadline. After 90 days elapse or a patch has been made broadly available, the bug report – including any comments and attachments – will become visible to the public.”
Epic requested to not show the details of the bug. Google abided by its own guidelines and shared the details. The Fortnite developer wasn’t happy about Google’s decision at all. They stated that:
“Epic genuinely appreciated Google’s effort to perform an in-depth security audit of Fortnite immediately following our release on Android, and share the results with Epic so we could speedily issue an update to fix the flaw they discovered.
However, it was irresponsible of Google to publicly disclose the technical details of the flaw so quickly, while many installations had not yet been updated and were still vulnerable.”
Steps that can make you safe
- A scan with Google Play Protect will help to identify any malware.
- Users simply need to update the Installer, which is a one-tap affair. Fortnite Installer that brought the fix is version 2.1.0, which you can check for by launching the Fortnite Installer and going to its settings.
- However, if you are up to date then you should not worry.