Researchers at security company Zimperium opposite NPR . The details of the leak will be shared at the beginning of August Black Hat security conference.
Hackers only need the phone number of their target to exploit the vulnerability. By code in a mms’je or hide a post on Google Hangouts all phone can be taken. The vulnerability in the system for videos.
Unnoticed
For example, this can be stopped in a video code, which will be loaded automatically into Hangouts. Even if the entire message is not viewed, the check can be taken over the phone. In an MMS message it has to be opened, but users need to download a file or clicking a link.
This makes it easy to penetrate unnoticed phones without users noticing. The hackers can then include copy data, delete data, and take over the microphone and camera, and so overhear conversations.
According Zimperium almost all Android phones hit. The leak would not actively abused. The investigators have informed Google in April and the company has rolled out a solution for manufacturers.
Security
The question is, how many units actually be updated. Many manufacturers update old equipment anymore. The researchers estimate that about 20 a security will get up to 50 percent of Android devices. The rest remains vulnerable.
Google acknowledges in the article of NPR that only about half of the devices will be secured. The company did not continue to be interviewed, but did know that vulnerability is a high priority and that partners are informed about the seriousness of the situation. Whether devices are updated with the solution is not known.
Still, nearly half of the people have an Android version for October 2013.
No comments:
Post a Comment