Bug could be used to plant malware on 99% of android phones

Started by Gary, Jul 05, 2013, 08:23:13

Previous topic - Next topic

0 Members and 1 Guest are viewing this topic.

Print
Go Down Pages1
User actions

Gary

Jul 05, 2013, 08:23:13
A four-year-old Android bug could be used to plant malware on 99 per cent of Android devices on the market, according to security researchers.

Bluebox Security CTO Jeff Forristal said the vulnerability in Android's security model creates a means for hackers to modify an Android app's APK code without breaking its cryptographic signature.

This means that any legitimate application - even those afforded elevated privileges by the device manufacturer - could be turned into a malicious Trojan before being offered for download. The difference between the two would not be readily detectable by either the smartphone or the app store - much less an end user.

http://www.theregister.co.uk/2013/07/04/android_master_key_vuln/
Damned, if you do damned if you don't

Simon

#1
Jul 05, 2013, 08:27:44
Oops!  :whistle:
Simon.
--
This post reflects my own views, opinions and experience, not those of IDNet.

Gary

#2
Jul 05, 2013, 09:15:04
Quote from: Simon on Jul 05, 2013, 08:27:44
Oops!  :whistle:
Is a bit. Back to yoghurt pots and string then  ;D
Damned, if you do damned if you don't

Technical Ben

#3
Jul 05, 2013, 17:50:18
99% of all software can become susceptible to the big bug sitting in the chair. ;)
I use to have a signature, then it all changed to chip and pin.

Gary

#4
Jul 06, 2013, 15:23:54
Quote from: Technical Ben on Jul 05, 2013, 17:50:18
99% of all software can become susceptible to the big bug sitting in the chair. ;)
Very true with this bug then maybe 99.9% recurring  ;)
Damned, if you do damned if you don't

Technical Ben

#5
Jul 06, 2013, 18:11:04
Oh no, not 100%... don't start that conversation. ;)
I use to have a signature, then it all changed to chip and pin.
Print
Go Up Pages1
User actions