Cyber security news for all

More

    Hackers can attack several apps via StrandHogg 2.0 vulnerability

    Attackers could attack Android devices through the vulnerability named StrandHogg 2.0 and gain control over many functions such as the camera. However, attacks are not easily possible.

    Google Released Security Updates For Its Devices On Patchday

    Android partners are said to have received the patch in April. All Android versions up to 9.0 are threatened. The current Android edition is not affected. Root access should not be required for successful attacks.In theory, attackers could basically hijack most legitimate apps from Google Play, for example to get personal information. This can be classified as critical.

    For an attack to be successful, a malicious app must already be installed on a vulnerable Android device. It looks like the attacker needs victims to help them set foot in systems.If the requirement is met, attackers could hijack legitimate apps via their malicious code app. If a victim opens the attacked Facebook app using the original icon, the victim runs unnoticed in the background.

    Because of the vulnerability, attackers could join in the Android task management function. They could then inject malicious code into newly created tasks, in which the code of the legitimate app is located in parallel. As a result, the task runs with the rights of the legitimate app, but the malicious code works in the background.

    The security researchers provide further details on the attack in a report offered on a website on the vulnerability.The security researchers discovered a similar attack last year. The bug called StrandHogg can be found in the multitasking system of Android. As the name suggests, StrandHogg 2.0 is the improved successor. Attackers can now attack several apps simultaneously. In addition, the further developed malware should work more concealed and leave less traces. As a result, antivirus software has a harder time getting in between.

    Recent Articles

    Cyber threats become more dangerous to secure the digitization

    The pandemic has provided a boost to digital world. But now it is important to secure it. Examples of developments in the pandemic are...

    Sopra Steria was encrypted with Ryuk ransomware

    Last week, there was a successful ransomware on the servers of the French provider Sopra Steria. In an extremely brief statement, the company only...

    Emotet takes unusual approaches and loads new malware

    Even those who are not concerned with the security have mostly heard of Emotet. The malware has been up to mischief for several years,...

    Cyber criminals could exploit the Oracle network

    The software manufacturer Oracle network only holds its updates every three months. Oracle speaks of security gaps - Due to the extensive product range...

    Unauthorized access at Scalable Capital

    There has apparently been unauthorized access to individual data at Scalable Capital. The company informed its customers about the incident by mail yesterday, referring...

    Related Stories

    Leave A Reply

    Please enter your comment!
    Please enter your name here

    Stay on op - Ge the daily news in your inbox