Lumension® Endpoint Intelligence Center

Intelligence Center » News Archive » Half of all Android devices vulnerable to installer hijacking attacks

Half of all Android devices vulnerable to installer hijacking attacks

2015/03/25

Help Net Security - (International) Security researchers at Palo Alto Networks discovered that a critical Android vulnerability discovered over a year ago and dubbed "Android Installer Hijacking", can allow attackers to completely compromise devices by changing or replacing seemingly legitimate applications with malware during installation without users' knowledge. The flaw affects all devices running Android versions 4.2 and earlier, and some running version 4.3.

Source: http://www.net-security.org/secworld.php?id=18133

Note: This news synopsis is taken from the DHS Daily Open Source Infrastructure Report, a daily [Monday through Friday, except US Federal holidays] summary of open-source published information concerning significant critical infrastructure issues; a 10-day archive of the DOSIR can be found at: http://www.dhs.gov/dhs-daily-open-source-infrastructure-report.


Last Updated: 27 May 2016 10:23:51