A Chinese researcher has discovered an exploit that allows hackers to break into Appliances with Android through the Chrome browser.
Speaking at the PacSec conference held in Tokio, αυτό το μήνα, ο ερευνητής ασφαλείας Guang Gong της Qihoo 360 παρουσίασε το zero-day, καταφέρνοντας να αναλάβει πλήρως τον έλεγχο μιας ενημερωμένης devicewith Android.
The Chinese researcher used a V8 JavaScript error through the Chrome browser to gain control over a Google Project Fi Nexus 6 device running the latter version of OS i.e. Android 6.0 Marshmallow.
He then used a Java flaw to install an arbitrary application that helped him gain remote control over the device.
The attack was called "one-shot exploit" since it can basically do everything in one move. The hack is very serious as they are at risk millions Android devices, since they all use JavaScript.
