Google found that the Fortnite installer could load malicious apps on an Android phone

Google found that the Fortnite installer could load malicious apps on an Android phone
Back on August 15th, Google needed to get in touch with Epic Games, the developer of Fortnite. A serious flaw was discovered with the Fortnite installer for Android that required a patch to be sent out stat. How serious an issue was this? Consider that with the Fortnite installer loaded on an Android handset, a malicioius app could be installed on the device at the direction of a hacker.

Google even provided Epic with a video that showed Fortnite installed on a Samsung handset using the Fortnite installer. When the game was opened, a malicious app would launch instead of the game. According to the Google Issue Tracker, the installer allow these fake APK's to be installed on an Android phone as long as they carried the package name of com.epicgames.fortnite.

On August 17th, Epic pushed out version 2.1 of the Fortnite installer, which fixed the vulnerability by changing the APK storage directory from external to internal. Epic requested a 90 day period before disclosing what had happened behind the scenes. It requested this delay in order to allow all users to update to the new version of the installer. However, Google lifted all restrictions after seven days, which is the company's standard disclosure practice.


As we previously told you, in order to save the 30% cut of revenue that it would have to pay Google to have Fortnite listed in the Play Store, Epic has decided to have Android users sideload the app using the installer. Seems to us that Google might have earned the opportunity to list the game after all.

source: Google

FEATURED VIDEO

8 Comments

1. Phullofphil

Posts: 1762; Member since: Feb 10, 2009

That’s a no brainer. Everybody that thinks this is alright should realize that google spent timeless years getting the security right and the inexpierence of epic games showed brilliantly. (I actually did not even think about this at the time. Lol)

2. Sammy_DEVIL737

Posts: 1529; Member since: Nov 28, 2016

Good job Google. Keep it up.

3. Cat97

Posts: 1861; Member since: Mar 02, 2017

Well...if the authors paid Google their "small" 30% fee, this problem wouldn't have existed :) And yet, Windows is still alive and kicking after 30 years of malware history. So hopefully the developers will just fix the issue and will not succumb to Google's tactics.

6. middlehead

Posts: 453; Member since: May 12, 2014

They didn't even have to give Google a cut, they could publish the app free through Google and run the payments through their own processor. Google doesn't lock that down like Apple. Publishing the app themselves is just plain stupid.

4. L0n3n1nja

Posts: 1549; Member since: Jul 12, 2016

Considering Apple has taken over $50 million in profit for themselves on Fortnite already, I really can't blame Epic for wanting to bypass Google.

7. Atechguy0

Posts: 918; Member since: Aug 03, 2018

If you actually knew anything about Google and their play store, then you would have known that Epic or any other app could bypass Google's monetization. Lots of apps already bypass Google's monetization without using their play services. Google doesn't force that on any app. Apple is the company that forces 30% monetization for any app that wants to make money on their app store.

5. AbhiD

Posts: 720; Member since: Apr 06, 2012

Something a lot of people haven't thought over is the seemingly slow adoption of Fortnite on Android. It is plagued by bugs, performance issues, lesser device compatibility, invisibility on Playstore. Fortnite has basically set out on a completely wrong note. Just after launch PUBG's adoption and popularity skyrocketed on Android unlike Fortnite which is not even getting a lukewarm response. I had already predicted Fortnite to be a failure on Android and it will be proved overtime. They have been late to the game and that too arrived with massive issues and complications.

8. cheetah2k

Posts: 2213; Member since: Jan 16, 2011

This is just another reason not to download it..

Latest Stories

This copy is for your personal, non-commercial use only. You can order presentation-ready copies for distribution to your colleagues, clients or customers at https://www.parsintl.com/phonearena or use the Reprints & Permissions tool that appears at the bottom of each web page. Visit https://www.parsintl.com/ for samples and additional information.