Technology: A serious Android bug could be exploited to steal your banking credentials - - PressFrom - US
  •   
  •   
  •   

Technology A serious Android bug could be exploited to steal your banking credentials

01:30  03 december  2019
01:30  03 december  2019 Source:   techradar.com

Google found a serious Android flaw affecting Pixel, Samsung and Huawei phones

  Google found a serious Android flaw affecting Pixel, Samsung and Huawei phones Google researchers have discovered an unpatched vulnerability on its own Android OS that affect the Pixel 1 and 2, Huawei P20, Samsung Galaxy S7, S8, and S9 and other devices. It disclosed the problem just seven days after finding it, as the exploit is a "zero-day" that is already being exploited in the wild. Oddly, the bug -- which affects Android 8.x and later -- was discovered and patched in December 2017 on earlier versions of the OS. However, the fix was apparently not carried over to newer versions.The exploit was discovered by Google's Project Zero team, and its Threat Analysis Group believes it was used in real-world attacks by Israel's NSO Group.

Researchers at Norwegian security firm Promon have discovered a serious Android vulnerability which can be exploited to steal login credential , access Called StrandHogg, the vulnerability affects all versions of Android , including Android 10, and the researcher who made the discovery says that it

Banking apps were hit by cyber-thieves who spoofed login pages to steal account details. The bug lets attackers create fake login screens that can be inserted into legitimate apps to harvest data. "It targeted several banks in several countries and the malware successfully exploited end users to

Researchers at Norwegian security firm Promon have discovered a serious Android vulnerability which can be exploited to steal login credential, access messages, track location and more.

a close up of a toy: Android© Provided by TechRadar Android

Called StrandHogg, the vulnerability affects all versions of Android, including Android 10, and the researcher who made the discovery says that it "leaves most apps vulnerable to attacks".

  • The best apps for Android
  • The best games for Android
  • The best Android phones of 2019

It works by exploiting a problem in Android's multitasking system, enabling malicious app to overlay legitimate apps with fake login screens that fool users into handing over security credentials.

Google finds Android zero day that can take control of Pixel and Galaxy devices

  Google finds Android zero day that can take control of Pixel and Galaxy devices Affecting devices from Samsung, Huawei, and Google itselfInstances of the exploit being used in the real world were discovered by Google’s Threat Analysis Group, which suggests that the exploit may have been used or sold by the NSO Group, an Israeli-based spyware vendor which was most recently behind a piece of spyware that can be injected into a phone via a WhatsApp call. The Verge has contacted the NSO Group for comment and will update this piece if it responds.

A newly discovered Android vulnerability is actively exploited by malware such as the BankBot banking Trojan and it impacts all versions of the operating system up to and including Android 10. The new vulnerability discovered by Promon security researchers was named StrandHogg and it can be

The Heartbleed Bug is a serious vulnerability in the popular OpenSSL cryptographic software Without using any privileged information or credentials we were able steal from ourselves the When it is exploited it leads to the leak of memory contents from the server to the client and from the client

Victims can also be tricked into granting the malicious apps additional permissions, which then enable the apps to perform all manner of nefarious activities including intercepting texts and calls, and listening in via a phone's microphone.

Draining the bank

Promon unearthed the security hole while investigating apps that been found stealing money from bank accounts. In all it found that 60 financial institutions had been targeted with various apps that exploited the vulnerability.

Chief technology officer at Promon, Tom Hansen told the BBC: "We'd never seen this behavior before. As the operating system gets more complex it's hard to keep track of all its interactions. This looks like the kind of thing that gets lost in that complexity".

New Android zero-day affects millions of devices

  New Android zero-day affects millions of devices Google's Project Zero has discovered a new zero-day exploit in Android capable of allowing an attacker to gain root access.The vulnerability was found in the kernel of the Android operating system and can be utilized by an attacker to gain root access to a device.

Microsoft is working on a fix for a serious vulnerability in all the latest versions of Internet Explorer (IE) that could be exploited to reveal the login The latest zero-day vulnerability reportedly works on IE11 for Windows 7 and 8.1, allowing attackers to steal login credentials and inject malicious content into

They can exploit your reputation, financial accounts, and much more. A website’s credentials are checked using SSL/TSL certificates What Is an SSL Certificate, and Do You Need One? While cybercriminals can ’t read your password through sidejacking, they could download malware that

Worryingly, it was found that most of the top 500 apps in Google Play were vulnerable to being exploited. Lookout, another security firm working in conjunction with Promon, identified no fewer than 36 malicious apps already actively exploiting the vulnerability. This included variants of the BankBot banking trojan which has been around since as long ago as 2017.

Promon published a video about the vulnerability:

OneSpan is a company that specializes in mobile app security, and it recognizes the importance of the discovery. Its senior product marketing manager, Sam Bakken, says: "Promon's recent findings make the vulnerability as severe as it's ever been".

He goes on to say that hackers have clearly been taking advantage of the security hole for quite some time: "Consumers and app developers alike were exposed to various types of fraud as a result for four years. Attackers are aware of the vulnerability and actively exploiting it to steal banking credentials and money".

Google has responded to news of the vulnerability by saying: "We appreciate the researchers' work, and have suspended the potentially harmful apps they identified. Additionally, we're continuing to investigate in order to improve Google Play Protect's ability to protect users against similar issues".

But Promon warns that it is still currently possible to create fake overlay screen to trick users in all versions of Android.

  • Find out how to enable dark mode for Android

Google really wants you to hack the Pixel’s Titan M security chip .
The company’s bug bounty program boosted to a $1.5 million top prizeIntroduced with 2018’s Pixel 3, Google’s Titan M security chip cordons off your smartphone’s most sensitive data from its main processor to protect against certain attacks. Google says the chip offers “on-device protection for login credentials, disk encryption, app data, and the integrity of the operating system.” Since its introduction, the chip has also been integrated with Android’s security key functionality where it’s used to store a person’s FIDO credentials. Suffice it to say, the integrity of the Titan M is an important element for the security of recent Pixel devices.

—   Share news in the SOC. Networks

Topical videos:

usr: 6
This is interesting!