Security experts at the Norwegian firm Promon have just discovered a new vulnerability in Android called the StrandHogg which can reportedly phish all kinds of user information, financial and otherwise including login credentials to crypto currency wallets.
The vulnerability works by masquerading as a regular app but once you start using, it "phishes" by sending sensitive data such as credentials back home. The vulnerability also reportedly allows the attackers remote access to the phone's microphones, file system and text messages.
Promon researchers have also stated that despite the disclosure made to Google, they haven't removed the affected apps yet.
No comments:
Post a Comment