As Bild newspaper reported, Microsoft revealed a serious security vulnerability in the Android operating system that makes billions of smartphones around the world vulnerable to hacker attacks.
The vulnerability affects almost all Android devices and can be exploited through faulty implementation of the so-called content provider system, which is responsible for managing data between different applications.
Dangerous manipulation through “dirty currents”
What makes this vulnerability special is the method hackers use to attack it. Using the “Dirty Streams” method, they can send malicious files to other applications, which then work with these files without their knowledge. If the file is saved or even executed, the malware can be activated the next time the affected application is opened. This attack method takes advantage of an Android security feature, which is supposed to protect against exactly such threats.
Popular applications among those affected
What is particularly concerning is that popular applications such as Xiaomi File Manager, which has been downloaded more than 1 billion times, and WPS Office, which has been downloaded 500 million times, are also affected by this vulnerability. Microsoft warns that the problem may be much larger, as many other applications may be affected as well, without knowing the full list.
How to protect your device
The good news: Many app developers, including Xiaomi and Kingsoft (developer of WPS Office), are already aware and are working on patches to close the vulnerability. However, Android users should take some precautions to better protect their devices:
- Regular Updates: Always keep your Android system and all installed apps updated.
- App sources: Install apps only from trusted sources, such as the official Google Play Store.
- Antivirus Apps: A reliable antivirus app can detect suspicious files and block them before they can cause any harm.
Since the vulnerability is widespread and the attack method appears relatively easy to implement, it is likely that hackers will soon be able to exploit this vulnerability.
More Stories
Ubisoft wants to release a new Assassin's Creed game every 6 months!
A horror game from former developers at Rockstar
Turtle Beach offers the Stealth Pivot Controller for PC and Xbox