Android Users Vulnerable to Man-in-the-Middle Attack Due to an insecurity in Google’s ClientLogin Protocol, it seems any Android user running 2.3.3 or earlier could unknowingly give away access to personal data. Researchers at uulm claim that authToken information, stored for 14 days any time you login to sites like Facebook and Twitter, can be easily [...]