A Chinese researcher discovered an exploit that allows to hackers hack into Android devices through the Chrome browser.
Speaking at congress PacSec held in Tokyo this month, security researcher Guang Gong of Qihoo 360 demonstrated the zero-day, managing to take full control of an updated Android device.
The Chinese researcher used one error of JavaScript V8 through the Chrome browser to gain control over a Google Project Fi Nexus 6 device running the latest OS version, namely Android 6.0 Marshmallow.
He then used a Java flaw to install an arbitrary application that helped him gain remote control over the device.
The attack was called "one-shot exploit" since it can basically do everything with one shot movement. The hack is very serious as millions of Android devices are at risk as they all use JavaScript.
