Friday, 7 June 2013

Beware Android users

The most sophisticated bug for a mobile phone ever has recently been found by Kaspersky Labs.


Not only can it do real damage (eg. sending SMS to premium rate numbers), it has no user interface, no indication of the privileges it has (circumventing all of Android's usual 'this app can..' lists) and cannot be removed from compromised devices!

The hackers found no less than 3 unknown critical vulnerabilities, one even obfuscating the code to prevent analysis.

Details here (Securelist.com).

Kaspersky have notified Google, but this could cast serious doubts on the enterprise use of Android.