I bet you didn't know that, did you! I wonder how many of you out there have been doing your on-line banking using some Android App, or other in blissful ignorance.
Me? Never! Android is the most targeted mobile operating system on the market - just like Windows is the most targeted operating system on PCs.
Ahhh, you reply, I've got my anti-virus program in place to protect me!
That is good, says I but the way this works by-passes your anti-virus programs protection system.
The best of it is, this vulnerability was discovered some 4 years ago in Android 1.6 (Donut) and has been carried over into every version since.
Basically, the flaw exposed in the Application Packages (APK) allows a hacker to add malicious code into an already signed App without changing the Apps signature so the App still reads as genuine and safe.
It is effectively like giving the hackers the keys to your device. They can steal all your data, accounts, passwords and run any App on your phone without your knowledge.
Google were notified of this vulnerability in February (which begs the question why were they kept in the dark for so long) and have reworked the Google Play store so it rejects any Apps that are vulnerable to the flaw. Any infected Apps already on your phone will no longer get updates from Google Play Store.
What this means for you is that any App you downloaded before this month COULD (not IS) be infected. The only ways to ensure your phone has no infected Apps is to download and install your Android operating system from the Android archives (only for experienced users) or uninstall all your Apps and reset your phone to factory defaults (assuming this hasn't been infected).
How do I keep myself from being infected?
Keep away from those 3rd party app providers - only download from a trusted source - make sure you've got that in your settings be careful of emails and don't plug in any USB device from your friends (this also means don't plug your USB device into a friends phone). Basically the same advice you give to anyone with a computer.
Don't have nightmares folks!
All registered trade marks acknowledged.
Me? Never! Android is the most targeted mobile operating system on the market - just like Windows is the most targeted operating system on PCs.
Ahhh, you reply, I've got my anti-virus program in place to protect me!
That is good, says I but the way this works by-passes your anti-virus programs protection system.
The best of it is, this vulnerability was discovered some 4 years ago in Android 1.6 (Donut) and has been carried over into every version since.
Basically, the flaw exposed in the Application Packages (APK) allows a hacker to add malicious code into an already signed App without changing the Apps signature so the App still reads as genuine and safe.
It is effectively like giving the hackers the keys to your device. They can steal all your data, accounts, passwords and run any App on your phone without your knowledge.
Google were notified of this vulnerability in February (which begs the question why were they kept in the dark for so long) and have reworked the Google Play store so it rejects any Apps that are vulnerable to the flaw. Any infected Apps already on your phone will no longer get updates from Google Play Store.
What this means for you is that any App you downloaded before this month COULD (not IS) be infected. The only ways to ensure your phone has no infected Apps is to download and install your Android operating system from the Android archives (only for experienced users) or uninstall all your Apps and reset your phone to factory defaults (assuming this hasn't been infected).
How do I keep myself from being infected?
Keep away from those 3rd party app providers - only download from a trusted source - make sure you've got that in your settings be careful of emails and don't plug in any USB device from your friends (this also means don't plug your USB device into a friends phone). Basically the same advice you give to anyone with a computer.
Don't have nightmares folks!
All registered trade marks acknowledged.
RSS Feed
