• POLITICS
  • SCIENCE
    • Astronomy
    • Physics
    • Biology
    • Geology
    • Environment
    • Medicine and Health
    • Sociology
    • Psychology
  • MOVIES & TV SHOWS
  • TECHNOLOGY
    • Artificial Intelligence
    • Virtual Reality
    • Bionics
    • Nanotechnology
    • Engineering
    • Robotics
    • Space Exploration
    • Transport
    • Industry and Service
  • GADGETS
    • Mobile Devices
    • Wearables
    • Consoles
    • Hi-Tech
  • GEEK CULTURE
    • Gaming
    • Comics
    • Thingamajigs
  • MUSIC
  • SOFTWARE
    • APPS
      • Android
      • iOS
      • Windows
  • HARDWARE
  • CARS
  • REVIEWS
  • Advertise
  • Geek Reply Jobs
  • Contact Us
Geek Reply
  • HOME
  • Editorials
  • Geek Squad
  • GeekReply Jobs
  • Contact Us
  • Facebook

  • Twitter

  • Google+

  • LinkedIn

  • RSS

Android

Stagefright 2 discovered on millions of Androids by Zimperium labs

Stagefright 2 discovered on millions of Androids by Zimperium labs
John Cusack
October 2, 2015

Google is still working on getting the Stagefright vulnerability fixed across its operating system, but matters seem to be getting worse for the company’s mobile operating system as researchers who contributed to the discovery of the original Stagefright vulnerability have discovered yet another similar issue within Android that would leave users open to malicious attacks and malware. Google acknowledged the discovery and announced that the first of the patches that should fix Stagefright mark II would be released on October 5.

Zimperium lab researchers have been working on finding flaws, bugs and security vulnerabilites in Android for the past few months. The researchers are credited for part of the Stagefright discovery that was all the rage this Summer, Yesterday, they announced that a new type of Stagefright vulnerability was found in all Android operating systems starting from Android 1.0 that would expose the users to malicious attacks through corrupted MP3 and MP4 files.

According to Zimperium, these files don’t even have to end up on a user’s phone, as they can be manipulated through the web and code can be introduced into their strings that can easily be picked up by vulnerable devices when streaming video or audio on the web or through a dedicated application. The vulnerability would expose the media library of the device and thus the privacy of the user, but through the media library and its attached protocols, attackers can further exploit the operating system and be able to take full control of the device.

As various Android phones are still getting Android 5.1.1 Lollipop, which contains the Stagefright fix, other users should be preparing for yet another minor update. Google is going to roll out the Stagefright mark II fix on Monday to its partners, and carriers as well as unlocked phones should be getting the fix in a matter of weeks. Unfortunately, Zimperium says there’s no way to prevent attackers from exploiting the vulnerability at this point, save for extreme caution. Until a proper patch is released, all Android devices will be vulnerable.

The Stagefright 2 vulnerabilities are dangerous to users especially because the exploit code that is injected in media can be streamlined to the device without the user actually accessing the file – a preview is enough. The good news is most people familiar with malware will not be fooled, as the attacker will eventually have to lead them to download malware in order to infect their devices.

That’s why everyone needs to make sure of their sources and always pay attention to what they’re tapping and downloading. Never download from unknown sources and never run unknown apps or open unknown, suspicious files on any device. Alternatively, you can use the Stagefright vulnerability detection tool to check if you’re in trouble. Until the patch is released, vigilance is key.

 

Post Views: 138
W3Schools
Related ItemsAndroid 5.0 LollipopMalwareStagefrightStagefright 2Stagefright detecorZimperium
Android
October 2, 2015
John Cusack

As part of the editorial team here at Geekreply, John spends a lot of his time making sure each article is up to snuff. That said, he also occasionally pens articles on the latest in Geek culture. From Gaming to Science, expect the latest news fast from John and team.

Related ItemsAndroid 5.0 LollipopMalwareStagefrightStagefright 2Stagefright detecorZimperium

More in Android

Instagram QR

Instagram QR Codes Now Available Worldwide

John CusackAugust 19, 2020
Read More
Instagram Facebook Messenger merge

Facebook’s Merging Of Instagram And Messenger Chats Begins

John CusackAugust 17, 2020
Read More
Instagram security glitch

Instagram Retained Someone’s Deleted Photos and Messages For Over A Year

Mike GuarinoAugust 14, 2020
Read More
Instagram TikTok

Instagram Offering Big Money To Snatch TikTok Creators

Mike GuarinoJuly 29, 2020
Read More
Twitter recenue drop

Twitter To Test Subscription Models Following Revenue Decline

Matt DavisJuly 24, 2020
Read More
new twitter app icons

Twitter Testing Customizable App Icons

Mike GuarinoJuly 20, 2020
Read More
instagram reels

Instagram’s ‘Reels’ TikTok Ripoff Out In US Next Month

Matt DavisJuly 17, 2020
Read More
wunderlist to todo microsoft deadline

Wunderlist Users Don’t Have Much Longer To Transfer Tasks To Microsoft To Do

Matt DavisApril 29, 2020
Read More
Mario Kart Tour release date

Mario Kart Tour iOS & Android Release Date

Mike GuarinoJune 19, 2019
Read More
Scroll for more
Tap

Game Deals

EwinRacing Champion Series Gaming Chairs
  • Popular

  • Latest

  • Comments

  • 3 Ways to Boost Your Home Business’ Security Posture
    TechnologyJuly 29, 2022
  • iPhone 14 – 10 LEAKED Features!
    GadgetsJanuary 20, 2022
  • Stellar Data Recovery Professional for Mac
    Stellar Data Recovery Professional for Mac- It can surely save the day
    ReviewsSeptember 26, 2019
  • 3 Ways to Boost Your Home Business’ Security Posture
    TechnologyJuly 29, 2022
  • The Importance of a Good Resume for the Tech Industry
    TechnologyJune 30, 2022
  • Playing It Safe: How Online Gamers Can Dodge Cybersecurity Risks
    Geek CultureJune 16, 2022
  • How Professional Gamers Can Combat Health Concerns
    GamingMay 10, 2022
  • Just 10% Of iPhone X Users Want Apple To Remove The Notch, Survey Says – My WordPress Website says:

    […] There are lots of requests that Apple users are…

  • The 9 most plausible rumors in regards to the new iPhones – Mark Swarrts says:

    […] Just 10% Of iPhone X Users Want Apple To…

  • Onimusha: Warlords HD PS4/Xbox One Box Art Revealed - GameSinners says:

    […] mean for the series, as its success could result…

  • 5 Essential Tips to Setup a Web Hosting Business | Your Own Website says:

    […] Source link […]

Geek Reply

Greetings techies! We are Geek Reply, a website whose main goal is to bring you all the latest news and updates from within the industry and beyond. What can you expect to find here?

Professional journalism coupled with expository writing for the most part, but we also give our honest opinion or throw in a pinch of humor for good measure when we deem it necessary. Our team is comprised of enthusiasts from across a wide variety of fields ranging from smartphone junkies to camera nerds, and everything in between. But perhaps you were looking for your daily dose of science news or hoping to read about the latest apps. If that’s the case, don’t worry, you came to the right place.

GeekReply Secured with GeekReply Scured
Nintendo Switch GeekReply

Copyright © 2020 GeekReply - Webdesign & Marketing - iPublicitate

Peeple, the Yelp for humans
Chrome web store lets devs and reviewers have a chat