🕳️ Vulnerabilities & CVEs

EngageLab SDK's Hidden Flaw Cracked Open 50 Million Android Devices — Crypto Wallets in the Crosshairs

Imagine a malicious app on your phone silently rifling through your crypto wallet's secrets. That's the nightmare a flaw in EngageLab SDK nearly unleashed on 50 million Android users.

Threat Digest Apr 11, 2026 4 min read
Read in: Deutsch English Español Français Italiano 日本語 한국어 Português (BR) Русский Türkçe
Cracked Android security sandbox with crypto wallet icons leaking data

⚡ Key Takeaways

  • EngageLab SDK flaw exposed 50M Android users via intent redirection, with 30M in crypto wallets. 𝕏
  • No known exploits, but it highlights SDK supply-chain risks akin to SolarWinds in mobile. 𝕏
  • Update to v5.2.1 immediately; future mandates on SDK vetting likely incoming. 𝕏
Published by

Threat Digest

Threat intelligence. Zero noise.

#Android vulnerability #EngageLab SDK #crypto wallet security #intent redirection

Worth sharing?

Get the best Cybersecurity stories of the week in your inbox — no noise, no spam.

Originally reported by The Hacker News

Related Stories

📬

Stay in the loop

The week's most important stories from Threat Digest, delivered once a week.

No spam. Unsubscribe any time.