The "Super-safe" BlackPhone was breached by a super stupid msg bug

Οι κατασκευαστές του BlackPhone – ένα κινητό που κυκλοφορεί στην αγορά και προσφέρει ασυνήθιστα υψηλά επίπεδα ασφάλειας – επιδιόρθωσαν μια κρίσιμη ευπάθεια που επιτρέπει σε hackers να εκτελέσουν κακόβουλο in .blackphone

Attackers only need one from a phone number to send a message that can endanger devices via the Silent Text application.

The defect may have bad effects on BlackPhone while the it is touted for its security, and it comes with a price that doesn't justify errors.

Hacker Mark Dowd (mdowd) from Australia, co-founder of Azimuth Security, discovered the defect during a random survey in the last months of 2014. He shared his findings with the Register website before releasing bug fix - It will be released today.

"Successful exploitation can give remote code execution with the privileges of the Silent Text application, which works like a regular Android application, but with some additional privileges in the system required to send and receive SMS. So the app has access to contacts, location information, it can write to disk, and of course it has access to the network, "Dowd said, noting that it took him about a week to discover the bug.

The defect could also be combined with other exploits to fully control the device.

iGuRu.gr The Best Technology Site in Greecefgns

every publication, directly to your inbox

Join the 2.100 registrants.

Written by Dimitris

Dimitris hates on Mondays .....

Leave a reply

Your email address is not published. Required fields are mentioned with *

Your message will not be published if:
1. Contains insulting, defamatory, racist, offensive or inappropriate comments.
2. Causes harm to minors.
3. It interferes with the privacy and individual and social rights of other users.
4. Advertises products or services or websites.
5. Contains personal information (address, phone, etc.).