A serious flaw in Android operating systems uncovered by a researchers at Zimperium zLabs could be the worst ever reported for Android devices.
The problem stems from the way Android phones analyze incoming text messages.
On Monday, mobile security firm Zimperium revealed that around 95 percent of Android phones used today can be hacked by a simple text message. “It could be absolutely silent. you may not even see anything”. It also must extend that coordination to worldwide device makers and customers, and users must agree to update their software, Johnson explains. “Before you wake up, the attacker will remove any signs of the device being compromised and you will continue your day as usual – with a trojaned phone”.
When the unlucky victim receives this text, the hackers can reportedly gain full control of it – accessing the camera, microphone and anything else they fancy. Android is the most popular mobile operating system around the globe. That’s because if you’re one of the 950 million Android users on phones and tablets, your device uses a code library called “Stagefright” which has a vulnerability. However, experts have warned that 95pc of the world’s 1bn Android phones are at risk and that phones between one and three years old could be particularly vulnerable. The message could even be deleted before you see it. The receiver does not have to click on the message or do anything to allow the hack to work.
Upon receiving a video MMS, or even viewing video via a built-in web browser, the code will run the malicious code embedded in the video MMS, through its framework, thus giving access to core features and more to the hacker.
Google released a statement in response to Forbes, thanking Drake for discovering the issues and for submitting patches to Google to fix the issues.
It was unclear yet whether any of Google’s partners had pushed out the patch to users. She added that nearly all Android devices make use of “multiple technologies that are designed to make exploitation more hard”.