Today if you walk on the street AND you have a cell phone in your pocket you’re a moving red dot on someone’s desktop. It doesn’t matter if you have and IPhone or an Android device.
Now, we all knew that this was possible, what I’m saying is that it became even easier. There’s only one condition that must be meet, to be in the cover area of a wi-fi network. No, you don’t have to connect to it, you just have to be in its reach zone for the one interested in your phone to install malware, intercept calls, and receive fake SMS.
This Hack Can Silently Break Into 1 Billion Android Apps
Hong Kong-based researchers have demonstrated an attack on a massive number of Android applications, allowing them remote access to whatever accounts lie within. The apps have been downloaded more than 1 billion times, they said, making the impact widespread and severe.
The trio of researchers – Ronghai Yang, Wing Cheong Lau and Tianyu Liu from the Chinese University of Hong Kong – looked at 600 of the most popular US and Chinese Android apps. For 41 per cent of the 182 that supported single sign-on, they found problems associated with OAuth 2.0 – a standard that allows users to have their Facebook or Google accounts verify their logins to different third-party apps or websites. That means the user doesn’t have to provide additional usernames or passwords. Read more…