A recent study published by Zimperium on Monday says Android phones can get infected through a single text message received.
The cybersecurity company claims its researchers have found “the mother of all Android vulnerabilities,” which is also considered as a flaw in the most popular mobile operating system that could give away millions of users’ personal information to hackers.
According to CNN, the problem begins with the process of analyzing incoming text messages within the Android phone’s OS. The phones are automatically processing incoming files including pictures, audio, or videos — that is, before a user has the chance to open these.
The auto-processing move means malware-infected files can actually start spreading its viruses to a phone soon as the files are received. The flaw is somehow similar to Apple’s text hack. However, Zimperium says this major flaw is even worse as it allows a hacker to “gain complete control” of the phone. Processes that can be controlled by hackers include: wiping the device, accessing apps, and even secretly turning on the camera.
Google has since admitted to the Android issue in a statement to CNNMoney. It did assure users that Android has its installed systems that limit a hacker’s access to separate apps and phone functions. However, hackers have infiltrated these systems before.
The security company’s report says the huge bug is able to affect any phone that uses Android software developed within the past five years. This means devices running Android’s Froyo, Gingerbread, Honeycomb, Ice Cream Sandwich, Jelly Bean, KitKat, and Lollipop iterations are included in the virus-prone zone.
Zimperium claims it has warned Google about the flaw it discovered on April 9 and even provided the giant tech with a solution. Google responded the next day, assuring them that a patch will be developed and rolled out to its clients soon.
A 90-day grace period is usually given to companies in such situations, but more than 100 days have passed and Google was not able to roll out the patch to all its users, thus Zimperium has gone public to warn all Android users.
View the original content and more from this author here: http://ift.tt/1JuoPfq
from cyber security caucus http://ift.tt/1KyoHtU
via IFTTT
No comments:
Post a Comment