Android phones can get infected by merely receiving a picture via text message, according to research published Monday.
This is likely the biggest Smartphone flaw ever discovered. It affects an estimated 950 million phones worldwide -- about 95% of the Androids in use today.
The problem stems from the way Android phones analyze incoming text messages. Even before you open a message, the phone automatically processes incoming media files -- including pictures, audio or video. That means a malware-laden file can start infecting the phone as soon as it's received, according Zimperium, a cybersecurity company that specializes in mobile devices.
If this sounds familiar, that's because this Android flaw is somewhat like the recent Apple text hack.
But in that case, a text message with just the right characters could freeze an iPhone or force it to restart. This Android flaw is worse, because a hacker could gain complete control of the phone: wiping the device, accessing apps or secretly turning on the camera.
The bug affects any phone using Android software made in the last five years, according to Zimperium. That includes devices running Android's Froyo, Gingerbread, Honeycomb, Ice Cream Sandwich, Jelly Bean, KitKat and Lollipop iterations.
Zimperium said it warned Google about the flaw on April 9 and even provided a fix. The company claims Google responded the very next day, assuring a patch would be shared with customers in the future.
The researchers who found the flaws told that they do not believe it is yet in use in the wild. Still, it is potentially the largest flaw ever uncovered in Android. The good news is that Google has a fix. The bad news is that Google can’t send it to most directly—it needs manufacturers and carriers to push the patch out to you. As of writing, it is unclear which devices are still at risk.
Thanks........
ReplyDelete