Millions of Android users are at risk from another ‘Stagefright’ security flaw. Researchers claim it gives hackers the ability to inject malware that could copy, steal and delete data on the device, take over the smartphone’s microphone and camera for spying purposes and even track a user’s movements via GPS. Here to comment on this news is Chris Eng, Vice President of Research at Veracode, the web and mobile application security specialist.
Chris Eng, Vice President of Research at Veracode
“With the discovery of the ‘Metaphor’ vulnerability, 2016 is the third year in a row when a serious application exploit has been discovered which could impact millions of devices. With all devices running Android 2.2, 4.0, 5.0 and 5.1 now at risk (which includes popular phones including the HTC One and the Samsung Galaxy S5), once again this flaw highlights the fundamental security issues that spans the entire software spectrum.
Patching application vulnerabilities is especially challenging for the Android community with the number of different manufactures and carriers charged with the responsibility of issuing patches to devices. As with Stagefright, we anticipate that Google will be quick to issue a patch to resolve this problem. However, we hope that we don’t see a replay of Stagefright 2.0 where many of the patches hadn’t been rolled out to end-users.”
[su_box title=”About Veracode” style=”noise” box_color=”#336588″][short_info id=”60239″ desc=”true” all=”false”][/su_box]
Most Commented Posts
2020 Cybersecurity Landscape: 100+ Experts’ Predictions
Cyber Security Predictions 2021: Experts’ Responses
Experts’ Responses: Cyber Security Predictions 2023
Data Privacy Protection Day (Thursday 28th) – Experts Comments
Experts Insight On US Pipeline Shut After Cyberattack
Most Active Commenters
Recent Comments
“Cybersecurity Awareness Month’s new evergreen theme "Secure Our World” is…
“Avoid storing data on personal devices: A crucial but often overlooked…
“I recommend a new nuance to passwords that isn’t often…
“In my role overseeing cloud environments and incident response, I'm…
“Cybersecurity Awareness Month serves as a reminder to confront the…