A Chinese researcher has discovered an exploit that allows hackers to break into Android devices via preletterof the Chrome browser.
Speaking at the PacSec conference held in Tokyo this month, security researcher Guang Gong of Qihoo 360 presented the zero-day, managing to take full control of an updated Android device.
The Chinese researcher used a bug of his JavaScript V8 through the Chrome browser to gain control over a device Google Project Fi Nexus 6 which was running the latest version of the OS i.e. Android 6.0 Marshmallow.
He then used a Java flaw to install an arbitrary application that helped him gain remote control over the device.
The attack was called "one-shot exploit" since it can do virtually anything with one move. The hack is very serious, as millions of Android devices are at risk, as they all use JavaScript.