500,000,000 Android devices affected by this malware that uses "clickjacking" to access your device

500,000,000 Android devices affected by this malware that uses
According to mobile security firm Skycure, a new form of malware is putting as many as half a billion Android handsets at the risk of "accessibility clickjacking." This is a method that tricks smartphone users into clicking on something that appears to be benign, but could actually be opening up a phone for hackers. It requires a malicious website to load what appears to be a non-threatening website with an invisible overlay from another service.

The clickjacking can allow a hacker to steal all text based sensitive information, and take actions using the operating system or apps that were not approved or not even known by the phone's owner. Personal and work SMS would be at risk along with "personal and work emails, data from messaging apps, sensitive data on business applications such as CRM software, marketing automation software and more."

Once accessibility has been enabled, the hacker can change admin permissions and even enable a new Device Admin. This could allow the hacker to disable the passcode or even remotely wipe the device.

To see this "clickjacking" in action, check out the video at the bottom of this story. It shows a free game called 'Rick and Morty.' Clicks made during the game are actually activating an invisible layer of the OS. Finishing the game means that the victim's phone has given accessibility permissions for a number of features.

65% of Android devices, those running Android 2.2 to 4.4, are vulnerable. Once your device has been updated to Android 5.0 Lollipop, this particular malware issue is no longer a threat.

To fight back, Skycure suggests updating to the newest Android OS build as soon as possible. Do not click on dialogue boxes unless you are sure you know where they came from, and why they appeared on your screen. Do not use third party app stores, and download a mobile threat defense app. Open "Settings," go to "Accessibility" settings and make sure there is either no group named "Services," or that the group has no enabled entries.






source: Skycure via BGR

FEATURED VIDEO

93 Comments

1. Unordinary unregistered

Poor guys.. My condolences :(

34. engineer-1701d unregistered

as an android user i am happy about this virus think crash the phones forces people 2 upgrade old ass phones increasing sakes and tech

85. 47AlphaTango

Posts: 709; Member since: Sep 27, 2015

And would waste $600 or more for an upgrade? Most people are not like you who would waste money. Especially if that phone was bought has a special meaning.

87. stanislav

Posts: 136; Member since: Sep 22, 2014

Yes so good !!! Lets pollute the earth as fast as we can, also throwing our money and time away is good.

95. Xelief

Posts: 62; Member since: Aug 17, 2015

Saying you're glad for a virus that can have such a large impact on someone's life because it forces them to upgrade is just retarded. Some people can't AFFORD to upgrade to the most recent devices, or just don't need a top of the line device. With such a large portion of the market still on these operating systems, Google and friends should be keeping up on security updates for them, especially since these phones are still being sold in a lot of cases.

42. NoToFanboys

Posts: 3231; Member since: Oct 03, 2015

As expected, you are the first one to troll here lol.

49. Macready

Posts: 1798; Member since: Dec 08, 2014

No need to worry, it's really only a possible concern for people installing apps from "unknown sources" on an old pre 5.0 firmware. Mostly a firm trying to push their "protection app" In the end, iOS is the OS with more security threats. http://www.gfi.com/blog/most-vulnerable-operating-systems-and-applications-in-2014/

63. perry1234

Posts: 623; Member since: Aug 14, 2012

Uh , this is 2016 and iOS is leaps and bounds ahead of Android in security. Android is better in other things , of course...

66. Macready

Posts: 1798; Member since: Dec 08, 2014

No, it's actually worse now for iOS than 2 years ago. Read their updated database. The funny part is also that most of these Android threats are theoretical. I have never heard anyone to be affected. That's not the case with iOS ones, the recent date bug exploit sitting fresh in our memories for example.

86. HonestRealist

Posts: 196; Member since: Jan 25, 2016

iOS vulnerabilities are luckily isolated to specific regions namely China. And who cares about the Chinese right? As long as they're making our s**t for cheap it's all good bro.

89. MrElectrifyer

Posts: 3960; Member since: Oct 21, 2014

Canada/US isn't in China you dishonest dummy, the date brick was already confirmed by Apple and affects ANY iDevices.

96. perry1234

Posts: 623; Member since: Aug 14, 2012

I agree that the date bug was a silly oversight by Apple , but for that bug to activate we specifically had to set the device date to 1970 or before. I would take such bugs any day rather than have my phone controlled by some hacker. Anyhow seeing the recent tiff between Apple and FBI , might just change to Android in the future ( had a Note 3 , switched for the first time to iOS with 6S Plus)

51. Mr.Meeseeks

Posts: 1; Member since: Mar 05, 2016

that's why stupid people should use Iphone

61. submar

Posts: 713; Member since: Sep 19, 2014

To Apple??

2. Unordinary unregistered

I guess this is where the latest and greatest OS having less than 2% installed base is a good thing though! Think of the bright side guys!

3. cripton805

Posts: 1485; Member since: Mar 18, 2012

Might as well use a black and white flip phone at least you will have good ol snake game.

7. Unordinary unregistered

On a serious not, Snake was the best. I friggen miss my Nokia phone :'(

9. kajam

Posts: 220; Member since: Jun 24, 2015

Or use an iPhone that you pay for but you don't own it with all limited features from BC

17. AlikMalix unregistered

Funny how you see ownership. With android they print a carriers logo on YOUR phone, then they put unremovable apps that you don't want on YOUR phone, then they release (or don't release at all) updates from manufacturers made for YOUR phone, and block features that manufacturers designed for YOUR phone, apps that start on their own, and hardly any control what apps are allowed to access on YOUR phone. Oh yeah, you "own" your phone.

20. Subie

Posts: 2275; Member since: Aug 01, 2015

Not if you buy factory unlocked. Or how about Nexus phones from the Google Play store?

21. AlikMalix unregistered

My point stands....

26. Subie

Posts: 2275; Member since: Aug 01, 2015

Mine stands taller. Post a real rebuttal next time.

32. AlikMalix unregistered

My point stands because how many people actually own those vs the rest of android market share. I'm actually curious - anyone got a link?

44. sachouba

Posts: 261; Member since: Jun 08, 2014

Not everyone lives in the US... In other places, carriers do NOT print anything on your phone, they install almost nothing on your phone (if they install something), they send updates quickly and do NOT block any feature. Moreover, more than half of the people who own a smartphone did NOT get the phone on contract. It's only is the US that people have just discovered no-contract plans...

37. Inotamira

Posts: 173; Member since: Feb 06, 2016

Except unlike the apple device you have stuck in your pucker, we have these things called a custom rom, which literally allows us to get away from all of that and always will. So your "points" kind of fall completely flat on that alone, but keep trying, maybe you'll hit a fact some day!

25. Unordinary unregistered

#rekt You make so much sense they probably will call you a troll. Thats how things work on here lol. I almost feel bad for the clowns on this site who are so brainwashed by the anti Apple movement where they can't even see their own issues right in front of them lol.

33. AlikMalix unregistered

Unordinary, I appreciate the vote, but name calling anyone is just juvenile. Argue for or against android all you want, but I hate personal attacks on any group of people.

47. NoToFanboys

Posts: 3231; Member since: Oct 03, 2015

Try saying something remotely negative about Apple and he'll also call you names.

64. Plutonium239

Posts: 1144; Member since: Mar 17, 2015

On Windows Phone and Windows 10 mobile, you can remove all of the carrier installed apps if you want to. Is this not possible on android devices for real?

88. xfire99

Posts: 1205; Member since: Mar 14, 2012

Agreed, all these happens when u buy an iPhone. http://mashable.com/2015/06/09/ios-9-unremovable-apps/#qRM3anPIFiqD

* Some comments have been hidden, because they don't meet the discussions rules.

Latest Stories

This copy is for your personal, non-commercial use only. You can order presentation-ready copies for distribution to your colleagues, clients or customers at https://www.parsintl.com/phonearena or use the Reprints & Permissions tool that appears at the bottom of each web page. Visit https://www.parsintl.com/ for samples and additional information.