Platform certificates used by Android smartphone vendors like Samsung, LG, and MediaTek have been found to be abused to sign malicious apps.
The findings were first discovered and reported by Google reverse engineer Łukasz Siewierski on Thursday.
“A platform certificate is the application signing certificate used to sign the ‘android’ application on the system image,” a report filed through the