Tags: android | security | flaw | google | amazon

Android Security Flaw Could Potentially Affect Half of All Users

By    |   Wednesday, 25 Mar 2015 07:15 AM

An Android security flaw is potentially exposing half of all users to remote takeovers by hackers, who have the ability to download malware without the owner's knowledge, a technology firm reported Tuesday.

Research tech firm Palo Alto Networks wrote on its blog that it recently found the vulnerability, which it's calling "Android Installer Hijacking," and reported that it could affect as many as 49.5 percent of all current Android users.

The Hill reported that the new bug could affect roughly 500 million of Android's more than 1 billion users worldwide, but there is no proof that hackers have actually exploited the security flaw yet.

"Android Installer Hijacking allows an attacker to modify or replace a seemingly benign Android app with malware, without user knowledge," wrote Palo Alto Networks about the invasive new bug. "This only affects applications downloaded from third-party app stores."

"The malicious application can gain full access to a compromised device, including usernames, passwords, and sensitive data," the blog continued. "Palo Alto Networks worked with Google and major manufacturers such as Samsung and Amazon to inform them of the vulnerability and issue patches for their devices."

Palo Alto Networks also posted responses from Google and Amazon for how customers can protect themselves.

"Android Open Source Project includes patches for this issue for Android 4.3 and later," Google noted, according to Palo Alto Networks. "The Android Security Team has not detected any attempts to exploit this vulnerability on user devices."

"Customers should move to the latest version of the Amazon AppStore which gets updated automatically on Fire devices and for third party Android devices it can be updated via www.amazon.com/getappstore," the online retailer said in its statement.

"Traditionally, the chief security concern with Android (as opposed to the Apple smartphone operating system) has come from Google Play's minimal app screening process," the Christian Science Monitor reported.

"In the past, Google Play did not screen apps for malicious software the way that Apple's App Store has. Recently, Google announced it would start doing just that. In the past, however Android has seen other vulnerabilities allow one app to masquerade as another: In 2014, the security firm Bluebox discovered a way to spoof security certificate verifying apps on Android."

© 2017 Newsmax. All rights reserved.

 
1Like our page
2Share
TheWire
An Android security flaw is potentially exposing half of all users to remote takeovers by hackers, who have the ability to download malware without the owner's knowledge, a technology firm reported Tuesday.
android, security, flaw, google, amazon
370
2015-15-25
Wednesday, 25 Mar 2015 07:15 AM
Newsmax Inc.
 

Newsmax, Moneynews, Newsmax Health, and Independent. American. are registered trademarks of Newsmax Media, Inc. Newsmax TV, and Newsmax World are trademarks of Newsmax Media, Inc.

NEWSMAX.COM
America's News Page
© Newsmax Media, Inc.
All Rights Reserved