The default implementation for KeyStore, the system in Android designed to store users credentials and cryptographic keys, is broken, researchers say.
Source: Threadpost