To Customer Support To Customer Support

Slurp passwords and other data from apps? Of course you can on Android

  • 23 August 2014
  • 0 replies
  • 2 views
Baldrick
Rank
Userlevel 7

Be careful what you install, say boffins. Again.

By Richard Chirgwin, 22 Aug 2014 One of the reasons that I do not like or use Android...but an interesting article for those that do. 

 "Researchers presenting at the Usenix conference have lifted the lid on yet another Android vulnerability: the way apps use memory can be exploited to leak private information with a success rate “between 82 and 92 per cent of the time”.Announced by the University of California, Riverside here, the researchers' paper [pdf] gives a pretty good idea of what's going on in its title: “Peeking into Your App without Actually Seeing It: UI State Inference and Novel Android Attacks”.
 They note that UI state can be spied on by a malicious app without requiring any permissions, in what they call a “UI inference attack”. Their demonstration included stealing login credentials and obtaining sensitive camera images taken by the user (in the demo case, they copied a cheque a user had shot for use with a banking app)."
 
 
 
Full Article
Webroot SecureAnywhere Complete Beta Tester v9.0.24.49, imaged by Macrium Reflect v7.2

0 replies

Be the first to reply!

Reply


Terms & Conditions

© 2004 - Webroot Inc.

We have recently updated our Privacy Policies. We encourage you to read the full terms here.