Researchers at the University of Michigan in the United States, discovered a new threat to mobile devices, although it still has not been criminally exploited, already causing concern.
Named UI state interence attack (attack inference in the user interface), the issue explores a different way other types of attack: a graphical user interface applications. And six to seven applications for Android are vulnerable.
“A graphical user interface for mobile applications has always been a concern for the specialists in digital security, and yet, it was not believed that she could be exploited to another application without special privileges. indicates But all that is changing, “said in a statement the expert Ilya Lopes of Brazil ESET.
The attack takes advantage of the communication between applications through unprotected communication channel. The interfaces of popular apps reveal each step of users, how to start the application, registration and login password and enter credit card data. All this can be intercepted by malicious applications.
The attack is triggered when the user downloads an app false believing it to be legitimate. It is important to pay attention to it, this attack because the application does not require special permissions to act. “One way to avoid this type of attack is always download applications from official pages and use a security solution specific information to mobile devices,” advises Ilya Lopes.
No comments:
Post a Comment