Samsung, LG, Mediatek certificates compromised to sign Android malware(Bleeping Computer)

Bleeping Computer reportsthat the Android platform signing certificates for several manufacturershave leaked and been used to sign malware.

However, based on the results, even though Google said that "allaffected parties were informed of the findings and have takenremediation measures to minimize the user impact," it looks likenot all the vendors have followed Google's recommendations since,at least in Samsung's case, the leaked platform certificates arestill being used to digitally sign apps.