StrandHogg: Android’s Vulnerability

The cyber security wing of Ministry of Home Affairs recently sent alert to all States warning them about the vulnerability in Android operating system that allows malware applications to pose as original, legitimate apps and access user data.

StrandHogg

• A Norwegian In-App protection firm, Promon, found proof of this Android vulnerability, which they call StrandHogg. It allows sophisticated malware attacks.
• Attackers, leveraging StrandHogg, exploit Android’s control settings called taskAffinity and taskReparenting, which enables any app to freely assume the identity of any other task in Android’s multi-tasking system.
• When users launch an app, an attacker can condition the system to display to ....