Bluebox Security Reveals 99% of Android Devices Have a Security Hole
Bluebox Security researchers have revealed a major flaw in Android’s security – an astonishing 99% of all Android devices on the market are vulnerable to malicious attacks!
According to BlueBox, the security hole has existed since Andoid 1.6 (Donut). Malicious app developers have the ability to modify code of legitimate APK without breaking the cryptographic signature- meaning the installation will go unnoticed.
The danger? An “update” to an app could allow the hacker to exploit a user into installing their malicious software. The hacker could even gain full control of the user’s device if the “update” was posed as a system update.
BlueBox notified Google about the exploit in Feburary. Bluebox CTO Jeff Forristal said that the only device immune to these attacks is the Samsung Galaxy S4.
In regards to the exploit, Google has made no comment. Jeff Forristal claims that Google is working on an update for its Nexus Devices.
What about other devices? There are a multitude of older devices that are no longer updated because of hardware/software limitations.
It is up to the device manufactures and carriers to update devices, otherwise they are unknowingly vulnerable to attacks. A Google Play store update could also safeguard against future attacks.
Please join us in our Forums
Like us on Facebook
Follow us on Twitter
For the latest updates from ABT, please join our RSS News Feed Join our Distributed Computing teams
- Folding@Home – Team AlienBabelTech – 164304
- SETI@Home – Team AlienBabelTech – 138705
- World Community Grid – Team AlienBabelTech
