Skip to main content
  1. Home
  2. Mobile
  3. News

Android Security Flaw Discovered

By
Android Security Flaw Discovered

It’s a week since the first Android handset, the T-Mobile G1, hit the stores, but a trio of researchers have already discovered a security flaw in the Android mobile platform.

Charlie Miller, Mark Daniel and Jake Honoroff, who work for security testing and analysis firm Independent Security Evaluators, have disclosed that a successful hack could allow the attacker to capture all the stored information on the phone’s browser. However, until a fix has been found, they weren’t willing to give any specifics.

Recommended Videos

They did give credit to the Android for its secure ‘sandbox,’ under which any attacks would be limited by cutting off access to outside components. But at the same time they criticized Google for not using the most recent version of open-source components in development.

Related

"The vulnerability is due to the fact Google did not use the most up to date versions of all these packages," the researchers said. "In other words, this particular security vulnerability that affects the G1 phone was known and fixed in the relevant software package, but Google used an older, still vulnerable version."

Editors’ Recommendations

Digital Trends Staff
Digital Trends Staff
Digital Trends has a simple mission: to help readers easily understand how tech affects the way they live. We are your…
If you have one of these apps on your Android phone, delete it immediately
The app drawer on the Google Pixel 8 Pro.

The NSO Group raised security alarms this week, and once again, it’s the devastatingly powerful Pegasus malware that was deployed in Jordan to spy on journalists and activists. While that’s a high-profile case that entailed Apple filing a lawsuit against NSO Group, there’s a whole world of seemingly innocuous Android apps that are harvesting sensitive data from an average person’s phone.
The security experts at ESET have spotted at least 12 Android apps, most of which are disguised as chat apps, that actually plant a Trojan on the phone and then steal details such as call logs and messages, remotely gain control of the camera, and even extract chat details from end-to-end encrypted platforms such as WhatsApp.
The apps in question are YohooTalk, TikTalk, Privee Talk, MeetMe, Nidus, GlowChat, Let’s Chat, Quick Chat, Rafaqat, Chit Chat, Hello Chat, and Wave Chat. Needless to say, if you have any of these apps installed on your devices, delete them immediately.
Notably, six of these apps were available on the Google Play Store, raising the risk stakes as users flock here, putting their faith in the security protocols put in place by Google. A remote access trojan (RAT) named Vajra Spy is at the center of these app's espionage activities.

A chat app doing serious damage

Read more
Security experts just found two giant smartphone privacy issues
The Apple iPhone 15 Pro Max's camera module.

Apple iPhone 15 Pro Max Andy Boxall / Digital Trends

This has been quite a stunning week in regard to the privacy and security of smartphone users. Specifically, two investigations have revealed troubling privacy concerns around smartphone advertising and iOS' notification system.

Read more
The OnePlus Pad is a lovely Android tablet with a surprising flaw
OnePlus Pad with keyboard case and stylus.

The OnePlus Pad is a story of what could have been if Android was better optimized for trackpads on keyboard accessories. That may sound like a small, niche complaint, but it's played a big role in my enjoyment (and frustration) with the tablet.

Using the OnePlus Pad can be glitchy and buggy at times, but despite its imperfect trackpad implementation (often resulting in me getting frustrated and wanting to move to my laptop for work), the tablet is surprisingly good for being your media consumption device.

Read more