alt=
203x44-linked-in
News  Android
News  Android
Android Truecaller exposes millions of users data

Millions of devices hit

Truecaller has been around a while now, and unfortunately is no stranger to being on the receiving end of the bad guys attention.

This is largely due to its age and user base - over 100 million - and its profile, at one point even falling victim to the "Syrian electronics army".

Recently Cheetah Mobile Security Research Lab has discovered a remotely exploitable flaw in the system which allows the attackers to steal their victims sensitive information, as well as modify their application settings such as deleting a users blacklist, etc. 

News  Android
Stagefright is worse than you thought

Back from the dead with a vengance

This sounds just like a cheesy 80's horror flick where the villain "dies" at the end only to return even stronger in yet another sequel. It seems Stagefright, or more accurately the family of malware which exploits a vulnerability in Androids low-level media playback system of the same name, just won't lie down no matter how much you throw at it.

We wrote about this last year when we showed a video of it in action, and also, embarrasingly for Google, again when they screwed up a fix for it. Perhaps their difficulties back then are reflected in this new outbreak.

This variant of the Stagefright attack vector is called "Metaphor" and it is claimed vulnerable devices can be infected when they merely vist a specially crafted web page. As before, it's delivered in the form of a video file which the user doesn't even have to press play to activate since it will begin playing all by itself. Ouch.

News  Android
Mazar

Spread by simple link in SMS 

Android users are being warned of a new virus, spread by SMS, termed "Mazar".

The message is "You have received a multimedia message from +[country code] [sender number] Follow the link *link here* to view the message.", but the link takes the user to malware which immediately infects the device when clicked.

First spotted in Denmark, there are already 100,000 reported infections. Russian language handsets are deliberately unaffected, which suggests the virus originates in that country. There is no word on how far the virus has spread across the world as of yet.

News  Android
Google patches Nexus devices

More Mediaserver fixes

The troubled Mediaserver issues are rumbling on. Google just released a batch of patches which contain fixes to further vulnerabilities found, plus WiFi and kernel remote code execution problems. Builds LMY49G and later contain the patches and you can check if your device is affected here.

5 critical, 4 high and 1 moderate

Two of the critical fixes, CVE-2016-0801 and CVE-2016-0802 are to counter attacks against the Broadcom WiFi driver. This requires the attacker and victim to be on the same network, but is classed as critical because it doesn't need the users involvement at all.