YoU are GeTTing HaCKed! -'Cloak and Dagger Attack'


Android users may want to keep a close eye on the apps they download onto their devices as researchers have discovered a series of vulnerabilities in the operating system that relies on two particular Android permissions to work.

Dubbed Cloak & Dagger by the research team that discovered the vulnerability, the attack relies on abusing the SYSTEM_ALERT_WINDOW and BIND_ACCESSIBILITY_SERVICE permissions in order to compromise the system.
System vulnerabilities
The way the exploit works is pretty straightforward: a malicious app gets downloaded and installed to the Android device, with the necessary permissions being granted without requiring the user’s input.

From there, hackers are able to perform Clickjacking, record keystrokes, phishing, and even installing a God-mode app, all without the user being aware of it.
God-mode-app
Illustrate the danger that the vulnerability poses, the researchers have prepared three videos that demonstrates the potential attacks that could be carried out.

The first one is called the Invisible Grid Attack, and it works by placing an invisible overlay over the device’s keyboard. With it, the hacker could identify the information that is being typed out.
The second video depicts a clickjacking attempt that eventually culminates in a God-mode application being silently installed in the background without the user even noticing it.

Finally, the third video showcasing how a hacker could steal a password by manipulating the overlays.


Even newest Android version Android Nougat 7.1.2 might get affected due to this attack. So be aware of it.
As google is working on this problem, they will be coming with a solution pretty quickly. Stay safe!

Want  to learn Android Programming?

Location: Mumbai, Maharashtra, India

Comments

Post a Comment

Popular posts from this blog

How E-commerce Sites can Increase Sales with Pinterest?

Image
Pinterest is basically a platform for users to visually share and discover exciting new interests by posting, or “pinning”, as it’s popularly called, videos or images to their own boards or that of others. If you’re looking to drive more traffic and sales to your e-commerce site, Pinterest is one of the social networks you must add to your marketing arsenal. People like to pin products on Pinterest and plan purchases. If used properly, your e-commerce site should be able to generate a high revenue with Pinterest. Let's see some of the best ways to harness the full potential of this social media platform: 1. Pick Your Pins Carefully Quality over quantity – that’s one rule every business owner is aware of. And if you’re planning to boost your e-commerce sales using Pinterest, this rule applies even more to you. Of course, volume is important but only to keep things consistent. Pin all your new items, engage users regularly, and keep things fresh. But, as Pinterest is an e
Keep reading

Every thing U can do with a Link-List + Programming_it_in_JaVa

Image
A linked list is a sequence of data structures, which are connected together via links. Linked List is a sequence of links which contains items. Each link contains a connection to another link. Linked list is the second most-used data structure after array.  Following are the important terms to understand the concept of Linked List: Link − Each link of a linked list can store a data called an element. Next − Each link of a linked list contains a link to the next link called Next. LinkedList − A Linked List contains the connection link to the first link called First. Linked list can be visualized as a chain of nodes, where every node points to the next node: As per the above illustration, following are the important points to be considered. Linked List contains a link element called first. Each link carries a data field(s) and a link field called next. Each link is linked with its next link using its next link. Last link carries a
Keep reading

Test Your SQL Basics - Part_1

The SQL SELECT Statement Questions 1. Determine the output of the below query SELECT '6+9'  FROM dual; A) 15 B) 6+9 C) 6 D) 9 2. At least how many clauses must be present in a SELECT statement? A) 0 (Zero) B) 1 C) 2 D) 5 3. Which of the following statement is correct? A) EVERY table expression is a part of SELECT statement B) Each SELECT statement does not consist of a table expression C) Every SELECT statement is built from a table expression D) All of the above 4. Which of the following are the optional clauses? A) SELECT and WHERE B) WHERE, GROUP BY and ORDER BY C) SELECT, WHERE and ORDER BY D) SELECT, WHERE, ORDER BY and GROUP BY 5. Which of the following is the last clause that is executed in a query? A) SELECT B) FROM C) WHERE D) GROUP BY 6. Which of the following is the correct basic syntax of SELECT clause? A) SELECT column1, column2,….columnx WHERE table_name; B) SELECT column1, column2,….columnx C) SELECT column1, column2,…columnx
Keep reading