By using this site, you agree to the Privacy Policy and Terms of Use.
Accept
10alert.com10alert.com10alert.com
  • Threats
    • WordPress ThreatsDanger
    Threats
    A cyber or cybersecurity threat is a malicious act that seeks to damage data, steal data, or disrupt digital life in general. Cyber threats include…
    Show More
    Top News
    What is a rootkit and how to remove it
    1 year ago
    The Mask – Unveiling the World’s Most Sophisticated APT Campaign
    1 year ago
    Regin APT Attacks Among the Most Sophisticated Ever Analyzed
    1 year ago
    Latest News
    Is macOS as secure as its users think?
    20 hours ago
    High Severity File Upload Vulnerability in Elementor Patched
    22 hours ago
    Letters with Remcos RAT hosted in Discord
    2 days ago
    Wordfence Intelligence Weekly WordPress Vulnerability Report (November 27, 2023 to December 3, 2023)
    2 days ago
  • Fix
    Fix
    Troubleshooting guide you need when errors, bugs or technical glitches might ruin your digital experience.
    Show More
    Top News
    For 0-day vulnerabilities in Windows, temporary patches
    1 year ago
    Windows 11 22H2 (build 22621.317) outs in the Release Preview Channel
    1 year ago
    How to avoid problems installing Windows 11 22H2
    1 year ago
    Latest News
    How automatically delete unused files from my Downloads folder?
    10 months ago
    Now you can speed up any video in your browser
    10 months ago
    How to restore access to a file after EFS or view it on another computer?
    10 months ago
    18 Proven Tips to Speed Up Your WordPress Site and Improve SEO | 2023 Guide
    11 months ago
  • How To
    How ToShow More
    ML Ops Platform at Cloudflare
    ML Ops Platform at Cloudflare
    2 days ago
    La nouvelle décision en matière de droit d’auteur en Allemagne rejette le blocage par le biais des résolveurs DNS mondiaux
    La nouvelle décision en matière de droit d’auteur en Allemagne rejette le blocage par le biais des résolveurs DNS mondiaux
    3 days ago
    How we used OpenBMC to support AI inference on GPUs around the world
    How we used OpenBMC to support AI inference on GPUs around the world
    3 days ago
    Latest copyright decision in Germany rejects blocking through global DNS resolvers
    Latest copyright decision in Germany rejects blocking through global DNS resolvers
    4 days ago
    Restricted Settings in Android 13 and 14
    4 days ago
  • News
    News
    This category of resources includes the latest technology news and updates, covering a wide range of topics and innovations in the tech industry. From new…
    Show More
    Top News
    How to move Copilot Taskbar button to System Tray on Windows 11 (preview)
    1 month ago
    Google Keyboard has received a convenient mode from iPadOS – it’s brilliant! In the latest version
    Google Keyboard has received a convenient mode from iPadOS – it’s brilliant! In the latest version
    4 weeks ago
    How to disable Windows 10 Copilot from Taskbar
    2 weeks ago
    Latest News
    How to check GPU temp on Windows 11
    1 day ago
    How to disable Defender Antivirus permanently on Windows 11
    2 days ago
    How to check CPU temp on Windows 11
    4 days ago
    How to disable news feed from Widgets on Windows 11
    5 days ago
  • Glossary
  • My Bookmarks
Reading: 95% of Android phones can be hacked with one just MMS
Share
Notification Show More
Aa
Aa
10alert.com10alert.com
  • Threats
  • Fix
  • How To
  • News
  • Glossary
  • My Bookmarks
  • Threats
    • WordPress ThreatsDanger
  • Fix
  • How To
  • News
  • Glossary
  • My Bookmarks
Follow US
ThreatsWordpress Threats

95% of Android phones can be hacked with one just MMS

Vitus White
Last updated: 13 October
Vitus White 1 year ago
Share
4 Min Read

The most scandalous threat is tickling the nerves of Android phones owners: Zimperium zLabs reported six gaping hole in Google OS in April 2015. They also told Forbes that while Google sent out patches to its partners, unbelievably, most manufacturers did not make fixes available to protect their customers yet. The bugs are called the worst Android flaws ever discovered.

95% of Android phones can be hacked with one just MMS, millions at risk

Security researchers claim that 95% of Android devices – roughly 950 million smartphones – are exposed to the exploit. Older devices running on an Android OS version below 2.2 are secured as well as gizmos running the latest build of Silent Circle’s Blackphone, which has already patched. Security updates for Nexus phone are slated to be released soon.

It only takes one text to hack 950 million Android phones: http://t.co/4fTPuHrTOp #Stagefright pic.twitter.com/I4RxDjOx6V

— Forbes Tech News (@ForbesTech) July 27, 2015

Discovering your mobile number is enough for a hacker who wants to make a malicious injection into your phone: they will do it with an infectious MMS. You receive it — and their work can begin. You don’t even need to open the message to become a victim, as your OS will do everything for you. A terrifyingly efficient and silent attack, don’t you think?

The vulnerability resides in the Stagefright software library. Google Hangouts is also implicated as it is used as a default app that processes video messages and thereby activates the virus.

Once installed, the malware can remove the original MMS to cover up all tracks. Being up and running, the virus will be able to spy on you via mobile camera and microphone, share your data onto the web and perform other nasty things.

Google has recently prepared additional patches for its Nexus phones and promised to releases them soon. Sadly, if you are not the owner of Nexus device, you may never see a security update for your phone. Unfortunately, smartphone manufacturers’ idling in providing patches is notorious, especially if you own a device older than 18 months.

lol when ur Jeep gets updates faster than ur Android phone

— Securitay (@SwiftOnSecurity) July 27, 2015

Meanwhile, CyanogenMod, the alternative Android OS, recently released fixes. Here are some guidelines on how to protect yourself if your manufacturer fails to pass along an update for your device.

  • You can root your Android mobile and disable Stagefright. After that you are free to go further and switch to another mobile OS.
  • You can buy a new secured smartphone (manufacturers, celebrate!) and relax until a new critical vulnerability is found.
  • Change settings and stop receiving MMSs.

Bad #Android #MMS #vulnerability: what is it and how to defend

Tweet

Whichever method you choose, you’ll still face a number of inconveniences. The quickest way is to disable auto-fetching of MMS for Hangout. You can do it literally in a minute:

  1. open Hangout;
  2. tap Options on the top left corner;
  3. tap Settings -> SMS;
  4. uncheck the Auto Retrieve MMS option in the Advanced Tab.

If you use default messaging apps, you can do the same like this:

  1. open the messaging app;
  2. tap More -> Settings -> More Settings
  3. tap Multimedia Messages -> Turn OFF Auto Retrieve.

Let’s hope that smartphone manufacturers will finally take these issues seriously. We can also encourage them a bit by tweeting directly to the manufacturers, which at most have customer support accounts on Twitter.


Source: kaspersky.com

Translate this article

TAGGED: Android, Malware, Security, Software, Threat, Threats
Vitus White October 13, 2022 October 7, 2022
Share This Article
Facebook Twitter Reddit Telegram Email Copy Link Print

STAY CONECTED

24.8k Followers Like
253.9k Followers Follow
33.7k Subscribers Subscribe
124.8k Members Follow

LAST 10 ALERT

Is macOS as secure as its users think?
Threats 23 hours ago
High Severity File Upload Vulnerability in Elementor Patched
High Severity File Upload Vulnerability in Elementor Patched
Wordpress Threats 1 day ago
How to check GPU temp on Windows 11
News 1 day ago
ML Ops Platform at Cloudflare
ML Ops Platform at Cloudflare
Apps 2 days ago
Letters with Remcos RAT hosted in Discord
Threats 2 days ago

You Might Also Like

Threats

Is macOS as secure as its users think?

23 hours ago
High Severity File Upload Vulnerability in Elementor Patched
Wordpress Threats

High Severity File Upload Vulnerability in Elementor Patched

1 day ago
ML Ops Platform at Cloudflare
Apps

ML Ops Platform at Cloudflare

2 days ago
Threats

Letters with Remcos RAT hosted in Discord

2 days ago
Show More

Related stories

Several Critical Vulnerabilities including Privilege Escalation, Authentication Bypass, and More Patched in UserPro WordPress Plugin
BridesMaid – neuron writes toasts For those very occasions when you need to give out a powerful
The other day Yandex pleased us with the announcement of a new Midi station – an excellent reason to listen
REMIX – remixes of pictures from neural networksCreate, share and correct works
How to download Diablo IV for free and absolutely legallyBlizzard has opened a free
Rostelecom employees were forced to abandon Android and iOS in favor of Aurora.
Previous Next

10 New Stories

Wordfence Intelligence Weekly WordPress Vulnerability Report (November 27, 2023 to December 3, 2023)
Check out The Critical Thinking Podcast
How to disable Defender Antivirus permanently on Windows 11
WordPress 6.4.2 Security Release – Patchstack
La nouvelle décision en matière de droit d’auteur en Allemagne rejette le blocage par le biais des résolveurs DNS mondiaux
How we used OpenBMC to support AI inference on GPUs around the world
Previous Next
Hot News
Is macOS as secure as its users think?
High Severity File Upload Vulnerability in Elementor Patched
How to check GPU temp on Windows 11
ML Ops Platform at Cloudflare
Letters with Remcos RAT hosted in Discord
10alert.com10alert.com
Follow US
© 10 Alert Network. All Rights Reserved.
  • Privacy Policy
  • Contact
  • Customize Interests
  • My Bookmarks
  • Glossary
Go to mobile version
adbanner
AdBlock Detected
Our site is an advertising supported site. Please whitelist to support our site.
Okay, I'll Whitelist
Welcome Back!

Sign in to your account

Lost your password?