A group of researchers from security firm Bluebox Security claim to have discovered a vulnerability in Android that puts into question the safety of 99% of mobile devices equipped with the operating system from Google. Theoretically, all the Android versions from 1.6, including this release, are vulnerable.
The flaw allows hackers are able to modify the source code APK – the installation package for an application – without violating the signature of encrypted software. Explained in other words, an application can be infected without the user, programmer and application store detetem irregularity. Failure explains the security company, is explained by the difference in processes there between check and install the application on devices. According to Bluebox, the failure was reported to Google in February this year. The technological U.S. has not commented on the alleged discoveries of researchers. Depending on the application, ha ckers can exploit different vulnerabilities as data theft or creating a botnet on your smartphone or tablet. The most severe cases occur in applications developed by major manufacturers of Android partners, since these applications are higher privilege levels for the operating system. In this last group of applications is possible to have access to all the phone and respective information – keywords, emails, messages, cards.The Bluebox also states that it is now the responsibility of manufacturers to produce updates that correct the vulnerability, and then, users who must maintain more updated and protected as possible. Theoretically, only the Samsung Galaxy S IV is not affected by the failure.
Recently iOS also involved in a similar controversy, as another security group claimed that by entering Lightning iPhone or iPad could violate the security system of the operating system in less than a minute.Written under the new Orthographic Agreement
No comments:
Post a Comment