Android is an open-source system, developers or security companies can easily check the code, Bluebox's security research team also found that the Android system has a security vulnerability, the affected object includes nearly 4 years most of the Android OID equipment ...
According to the statement, this vulnerability has been around since the Android 1.6 (Donut), and rogue developers can use it to modify the code of compliance APK without breaking the encryption signature, so that malware is not detected by the device user when it is installed, and users will not be in the device or Google play Store found an unusual problem.
This loophole allows the information in the device to be overheard, passed on to others, remotely controlled (phone calls, Sms/whatsapp, photos and recordings), and even as a tool for attacking networks and other human devices, and the problem remains unresolved for the time being.
Bluebox said they had told Google about the problem in February, according to Bluebox CTO Jeff Forristal, the only one immune to the vulnerability on the market is Samsung's flagship Galaxy S 4. From this point of view, perhaps the relevant security patches are now available, Forristal also revealed that Google is currently in the Nexus product preparation for the corresponding upgrade. However, Google has not commented on the matter for the time being, hoping that they and other manufacturers can solve the problem as soon as possible.
Start building with 50+ products and up to 12 months usage for Elastic Compute Service
1 on 1 presale consultation
24/7 Technical Support 6 Free Tickets per Quarter Faster Response
Alibaba Cloud offers highly flexible support services tailored to meet your exact needs.
A comprehensive suite of global cloud computing services to power your business
Payment Methods We Support
