August 24, 2015 at 11:05 am #4744
Android Task Hijacking attack is a new security problem that affects all android mobile phones, tablets and devices that are running even latest version of Android operating system. Task Hijacking ability allows hackers to hijack any legitimate application and display their fake login page, authentication or payment processing page to the mobile users. Ofcourse, its the popular Phishing attack that runs successfully inside any android application by an hacker and the user will never be able to identify the difference easily.
The core vulnerability resides inside Android’s multi tasking feature which allows android phones to run multiple apps at same time.
Hackers can successfully spy on any android smartphone, steal login details, payment information or any details entered by the user without their knowledge. Also they can install any malware to further take control of the entire Android mobile device. If you have antivirus installed on your android mobile, these attacks can still happen as it targets the apps that you have downloaded and installed.
Security Researchers have published a research paper with a title “Towards Discovering and Understanding Task Hijacking in Android” during USENIX Security 15 conference happened in Washington DC.
Researchers have also warned that this is just a start and Task Hijacking on Android will create more attacks related to Ransomware, Spy Apps for Android and DDoS Attacks in coming days.
Google recommends its users to use only Android’s Verify Apps and Safety Net Features to prevent such Task Hijacking attacks on user mobile devices. Users who have rooted android mobiles and installed third party apps should be careful as they are at risk. Always install apps from trusted sources to prevent being affected by these android vulnerabilities and exploits.
Thanks for reading and have a great day.