securityweek.com·Apr 10, 2026
Microsoft reported a security vulnerability in an EngageLab SDK that exposed millions of Android crypto wallet users, which was disclosed to the vendor a year ago.
The key insight here is the critical importance of timely vulnerability management and disclosure. Despite Microsoft's report of the security hole in the EngageLab SDK a year ago, the delay in addressing it exposed millions of Android crypto wallet users to potential threats. For cybersecurity professionals, this underscores the necessity of prioritizing rapid patching and vendor collaboration to mitigate risks in a timely manner.