Zerosecurity
  • Home
  • Security
    • Exploits
    • Mobile Security
  • Malware
  • Data Breaches
  • Crypto
  • Privacy
  • Downloads
    • Malwarebytes
    • Exploits
    • Paper Downloads
    • Software & Service Reviews
No Result
View All Result
SUBSCRIBE
Zerosecurity
  • Home
  • Security
    • Exploits
    • Mobile Security
  • Malware
  • Data Breaches
  • Crypto
  • Privacy
  • Downloads
    • Malwarebytes
    • Exploits
    • Paper Downloads
    • Software & Service Reviews
No Result
View All Result
Zerosecurity
No Result
View All Result
Home Mobile Security

New Android vulnerability allows spoofed texts

Paul Anderson by Paul Anderson
November 6, 2012 - Updated on May 17, 2022
in Mobile Security
0
74
SHARES
1.2k
VIEWS
Share on FacebookShare on Twitter

Android apps are able to trick smartphone users into thinking that they have received a text from an arbitrary sender. These apps can place whatever content they like within these non-texts. This creates the perfect conditions for phishing, or more specifically, SMiShing in this case. A malicious app of this kind could, for example, construct a text claiming to be from PayPal asking the user to enter their access credentials on a fake PayPal web site.

You might also like

Are Bluetooth signals being used to track smartphones?

How Apple Stopped $1.5 billion Worth of Fraudulent Transactions in 2021

SharkBot – A New Generation Android Banking Trojan

The vulnerability was discovered by security researcher Xuxian Jiang’s team at North Carolina State University, which has also been responsible for discovering numerous other Android vulnerabilities. The researcher has posted a YouTube video demonstrating a proof-of-concept app running under Ice Cream Sandwich (4.0.4) and the ancient Donut (1.6). The current Android version, Jelly Bean, is also reported to be vulnerable. According to Jiang, the app does not require any special permissions.

Since the text message never leaves the user’s phone, it does not even require a SIM card. Jiang says that there is no way of detecting that the text is a fake. While Google has confirmed the existence of the problem and promised mitigation, it is unclear when the vulnerability will be fixed or in which versions of Android.

However, Android users should not get their hopes up that the update will suddenly appear on their smartphones as most phone manufacturers are very poor at providing existing customers with operating system updates or security fixes.

Cross-Posted: http://www.h-online.com

Tags: androidh-onlinehackphishingvulnerability
Share30Tweet19
Paul Anderson

Paul Anderson

Editor and chief at ZeroSecurity. Expertise includes programming, malware analysis, and penetration testing. If you would like to write for ZeroSecurity, please click "Contact us" at the top of the page.

Recommended For You

Are Bluetooth signals being used to track smartphones?

by Christi Rogalski
June 17, 2022
0
Bluetooth research leads to tracking

Can Bluetooth signals be used to track smartphones? Many people would say "No" to this question. However, a team of engineers at the University of California San Diego...

Read more

How Apple Stopped $1.5 billion Worth of Fraudulent Transactions in 2021

by Christi Rogalski
June 8, 2022
0
Apple app store security fraud

Apple has recently released statistics on the number of fraudulent and untrustworthy transactions that have passed through the Apple App Store in 2021. In combination, they have stopped...

Read more

SharkBot – A New Generation Android Banking Trojan

by Kyle
May 27, 2022 - Updated on May 31, 2022
0
SharkBot Android Banking Malware

SharkBot is a "newer" Android banking trojan found recently being distributed on the Google Play Store. The trojan was originally found in October of 2021 by the Cleafy...

Read more

Silent OS 3.0 for Blackphone Completely revamped

by Paul Anderson
July 24, 2016 - Updated on May 17, 2022
1
Silent OS 3.0 for Blackphone Completely revamped

Version 3.0 migrates Silent OS to Android Marshmallow 6.0.1 and delivers the Android safety patch level to June 2016. Along with fixes for security vulnerabilities, Silent OS 3.0...

Read more

Hummer malware infecting androids earns $3.5 Million a week

by Paul Anderson
July 6, 2016 - Updated on May 17, 2022
0
Hummer malware infecting androids earns $3.5 Million a week

A new Trojan, named Hummer, has been discovered infecting Android phones. The malware creators are earning an estimated $3,500,000 a week or $500,000 a day say researchers at...

Read more
Next Post
Sophos Anti Virus patches critical vulnerability

Sophos Anti Virus patches critical vulnerability

Related News

Google Chrome Extension fingerprinting source

Google Chrome exposes user extensions to fingerprinting

July 1, 2022
Downthem DDoS Service owner sentenced

Downthem DDoS service owner gets a 2-year prison sentence

June 30, 2022
Cloudflare record breaking DDoS

Cloudflare Stops Record-Breaking DDoS

June 29, 2022
Zerosecurity

We cover the latest in Information Security & Blockchain news, as well as threat trends targeting both sectors.

Categories

  • Crypto
  • Data Breaches
  • DotNet Framework
  • Downloads
  • Exploits
  • Exploits
  • Information
  • Legal
  • Malware
  • Malware Analysis
  • Mobile Security
  • Paper Downloads
  • Piracy
  • Privacy
  • Programming
  • Public
  • Security
  • Security
  • Software & Service Reviews
  • Technology News
  • Tools
  • Tutorials
  • Video Tutorials
  • Whitepapers
  • Zero Security
  • Contact Us
  • List of our Writers

© 2022 ZeroSecurity, All Rights Reserved.

No Result
View All Result
  • Home
  • Security
    • Tools
  • Data Breaches
  • Malware
  • Privacy
  • Contact Us

© 2022 ZeroSecurity, All Rights Reserved.