Scary Vulnerability: One Text Can Hack 95% of Android Phones

Discussion in 'Android News' started by dgstorm, Jul 28, 2015.

  1. dgstorm

    dgstorm Editor in Chief
    Staff Member Premium Member

    Joined:
    Dec 30, 2010
    Messages:
    11,016
    Likes Received:
    3,979
    Trophy Points:
    823
    Location:
    Austin, TX
    Ratings:
    +4,254
    [​IMG]

    Here's a story that @Jeffrey shared with us. Apparently several nasty new vulnerabilities have been discovered in Android. These new vulnerabilities are being called the worst security flaw in Android ever discovered. The scary part is that they can be activated just from text messages. Here's a quote with the details,

    It seems ridiculous that the Android OEMs are dragging their feet on getting Google's fixes out to Android owners. Let's hear from our forum experts on this subject. Is this something we should be concerned about?

    There's even more info regarding these vulnerabilities at the Forbes source link below.

    Source: Stagefright It Only Takes One Text To Hack 950 Million Android Phones
     
  2. Jonny Kansas

    Jonny Kansas Administrator
    Staff Member Rescue Squad

    Joined:
    Jan 21, 2010
    Messages:
    16,468
    Likes Received:
    7,038
    Trophy Points:
    1,278
    Location:
    Michigan's Upper Peninsula
    Ratings:
    +8,379
    Current Phone Model:
    Pixel XL
    Twitter:
    jonny_ks
    It's a shame that Google's figured out a fix for this, but apparently hasn't been able to bake it in to their messaging apps. You'd think they could do something in the code for Hangouts to block the triggers from being activated in this way.

    While they may have issued fixes and we're all now waiting on OEMs and carriers (good luck...), it's kinda hard to believe there's not at least a temporary fix that could be used in Google's own messaging apps in the meantime.
     
    • Agree Agree x 4
  3. Dusty

    Dusty Silver Member

    Joined:
    Jan 13, 2010
    Messages:
    1,155
    Likes Received:
    459
    Trophy Points:
    198
    Location:
    DC/NoVA
    Ratings:
    +570
    Current Phone Model:
    Nexus 6
    This is exactly why people shouldn't buy devices where the carriers control the software and updates.
     
    • Agree Agree x 3
    • Winner Winner x 1
  4. Jeffrey

    Jeffrey Premium Member
    Premium Member

    Joined:
    Jan 30, 2012
    Messages:
    6,692
    Likes Received:
    3,549
    Trophy Points:
    1,578
    Location:
    Thailand
    Ratings:
    +4,037
    Current Phone Model:
    iPhone 7 Plus JB
    I agree that the carriers drag their feet when it comes to updates, but what alternatives do we really have.
     
    • Like Like x 3
  5. Powarun

    Powarun Member

    Joined:
    Feb 18, 2015
    Messages:
    96
    Likes Received:
    24
    Trophy Points:
    8
    Ratings:
    +46
    Current Phone Model:
    HTC One M8
    iPhone or Nexus. Yeah not a funny joke. But thats one of the reasons why I jumped on the Nexus 6 was updates in a very timely fashion.
     
    • Agree Agree x 3
    • Like Like x 1
    • Disagree Disagree x 1
  6. cr6

    cr6 Super Moderator
    Staff Member

    Joined:
    Apr 1, 2011
    Messages:
    8,356
    Likes Received:
    5,878
    Trophy Points:
    1,778
    Location:
    NW Rocky Mtn region
    Ratings:
    +6,708
    Current Phone Model:
    Galaxy S7 Edge
    Twitter:
    @dronewolfmedia
    Do you root your Nexus @Powarun ?

    S5 tap'n
     
  7. Dusty

    Dusty Silver Member

    Joined:
    Jan 13, 2010
    Messages:
    1,155
    Likes Received:
    459
    Trophy Points:
    198
    Location:
    DC/NoVA
    Ratings:
    +570
    Current Phone Model:
    Nexus 6
    Was just about to type the same thing.
    Nexus devices or phones like the OnePlus that cut the carrier out of the upgrade path.
    It's the reason my last two phones weren't carrier specific devices.
     
  8. Ollie

    Ollie Droid Does

    Joined:
    Apr 13, 2012
    Messages:
    3,446
    Likes Received:
    2,105
    Trophy Points:
    1,468
    Location:
    South Coast
    Ratings:
    +2,485
    Current Phone Model:
    Note Edge - iPhone 6 Plus
    • Like Like x 4
  9. Jonny Kansas

    Jonny Kansas Administrator
    Staff Member Rescue Squad

    Joined:
    Jan 21, 2010
    Messages:
    16,468
    Likes Received:
    7,038
    Trophy Points:
    1,278
    Location:
    Michigan's Upper Peninsula
    Ratings:
    +8,379
    Current Phone Model:
    Pixel XL
    Twitter:
    jonny_ks
  10. cr6

    cr6 Super Moderator
    Staff Member

    Joined:
    Apr 1, 2011
    Messages:
    8,356
    Likes Received:
    5,878
    Trophy Points:
    1,778
    Location:
    NW Rocky Mtn region
    Ratings:
    +6,708
    Current Phone Model:
    Galaxy S7 Edge
    Twitter:
    @dronewolfmedia
    The point I was trying to make is: those folks that purchase Nexus/One Plus devices usually root them. The whole "security" concerns go out the window making your device just as vulnerable to hacking.
    Despite all the precautions we take on a daily basis in order to protect our private data, identity etc....there will ALWAYS be a way for hackers to gain access to your device. If it's not this particular vulnerability, it will be another. Nobody is 100% secure regardless of what device you purchase.

    S5 tap'n
     
    • Agree Agree x 3
    • Like Like x 1
  11. Ollie

    Ollie Droid Does

    Joined:
    Apr 13, 2012
    Messages:
    3,446
    Likes Received:
    2,105
    Trophy Points:
    1,468
    Location:
    South Coast
    Ratings:
    +2,485
    Current Phone Model:
    Note Edge - iPhone 6 Plus
    Safety first!

    Alternatively, you can block non-contact numbers if manually retrieving a photo, document, sound file, etc is too much of a hassle.
     
  12. Jonny Kansas

    Jonny Kansas Administrator
    Staff Member Rescue Squad

    Joined:
    Jan 21, 2010
    Messages:
    16,468
    Likes Received:
    7,038
    Trophy Points:
    1,278
    Location:
    Michigan's Upper Peninsula
    Ratings:
    +8,379
    Current Phone Model:
    Pixel XL
    Twitter:
    jonny_ks
    Yeah. I already made the change on my phone. I still think they should be able to code the app to just completely reject any message containing the trigger.
     
    • Agree Agree x 1
Search tags for this page

just how scary is it for android users

,

scary android