A Chinese researcher has discovered an exploit that allows hackers to break into Appliances with Android through the program tours Chrome.
Speaking at the PacSec conference held in Tokyo this month, Qihoo 360's Guang Gong security researcher unveiled zero-day, managing to take full control of an updated Android device.
The Chinese researcher used a V8 JavaScript error through the Chrome browser to gain control over a Google Project Fi Nexus 6 device running the latest OS version, namely Android 6.0 Marshmallow.
He then used a Java flaw to install an arbitrary application that helped him gain remote control over the device.
The attack was called "one-shot exploit" since it can basically do everything in one move. The hack is very serious as they are at risk millions Android devices, since they all use JavaScript.