Εκατομμύρια συσκευές Android είναι ευάλωτες σε επιθέσεις από hackers και secret services that exploit an old vulnerability: the old Android Stagefright exploit is back with a vengeance.
This time Stagefright exploit allows an attacker to bypass Android security measures smartphones in just 10 seconds by tricking owners into visiting the attackers' website, which you understand contains a malicious (media) file.
The Israeli company ασφαλείας NorthBit αναφέρει ότι κατάφερε να αξιοποιήσει με επιτυχία την ευπάθεια Stagefright του Αndroid (ανακαλύφθηκε πέρυσι) και την περιγράφουν σαν τη "χειρότερη που έχει ανακαλυφθεί ποτέ."
The new Stagefright exploit, named Metaphor, is described in detail in research work (PDF) of NorthBit.
The researchers, in addition to the details they published, also uploaded a demonstration video showing the effectiveness of the exploit on an Android device, Nexus 5. Using Metaphor, they managed to hack it in just 10 seconds. Metaphor has been successfully tested (so far) Transfer on the following devices: Samsung Galaxy S5, LG G3 and HTC One.
Watch the video (PoC)
https://www.youtube.com/watch?v=I507kD0zG6k