Report: Android Vulnerability Allows Hackers to Steal Crypto Wallet Info
Joeri Cant's original article for cointelegraph.com reduced by 73%
Promon security researchers have uncovered a vulnerability that could allow cybercriminals to access private data on any Android phone. 500 most popular apps are at riskOn Dec. 2, the Norwegian app security firm Promon revealed the discovery of a dangerous Android vulnerability called StrandHogg, which has reportedly infected all versions of Android and has put the top 500 most popular apps at risk.
"We have tangible proof that attackers are exploiting StrandHogg in order to steal confidential information. The potential impact of this could be unprecedented in terms of scale and the amount of damage caused because most apps are vulnerable by default and all Android versions are affected." How does StrandHogg work?StrandHogg poses as any other app on the infected device and tricks users into believing that they are using a legitimate app. The vulnerability then allows malicious apps to phish users' credentials by displaying a malicious and fake version of a login screen.
Aside from stealing personal information like crypto wallet login credentials, StrandHogg can also reportedly listen to the user through their microphone, read and send text messages, and access all private photos and files on the device, among other nefarious exploits. While Google did remove the affected apps, it does not appear as if the vulnerability has been fixed for any version of Android.
Donate Bitcoin to this address
Scan the QR code or copy the address below into your wallet to send Bitcoin
Donate Ethereum to this address
Scan the QR code or copy the address below into your wallet to send Ethereum
Donate With MetaMask
Donate ETH With MetaMask
Alternatively, support us by using the following referral links:
CN [too long; didn’t read]
Summarised crypto news.