Clickjacking vulnerability affects devices running Android 4.4

Clickjacking vulnerability affects devices running Android 4.4

Vulnerabilities and exploits Android are constantly appearing. Some can be quite harmless, but some, like Heartbleed and Stagefright, terrifying, because they can be devastating.

Clickjacking vulnerability affects devices running Android 4.4



Exploits are often caught in the apparatus of the applications that are downloaded illegally through informal shops. The latest vulnerability, found a research laboratory Skycure, affects devices that operate under the operating system Android 4.4 and above.

Vulnerability uses Clickjacking, where clicking in the application provides access to hidden features. In this case, it uses the access to Android settings to get control of the system and to control everything that happens on the device.

The demonstration Shown below, SkyCure shows a game based on the show Rick and Morty. In the game, users will constantly appear relate to the character. At the same time, they touch a shortcut that will allow the application to gain privileges as a device administrator.

After that, they show a message that is typed into Gmail using a remote keypad. With this privilege, of course, an exploit can get much more control over your device, than what you see.

For devices on Android 5.0 Lollipop vulnerability is not a threat, but the operating system Android 4.4 KitKat is still widespread, even on a completely new ustroystvvh in the low price segment.

If you suspect that your system has been compromised by this exploit, check your security settings; point device administrators will any applications that have the permission.

Bookmark the permalink.

Leave a Reply