AndroGuru
The Android community has something to worry about again. Bluebox Security identified a design error in Android which gives access to infected apps to conduct a quiet takeover of an Android device without any installation. The period of exposure is substantial which potentially affects most Android phones from 2010 up till today. The code which is flawed called “Fake ID” by Bluebox grants malware apps permission to access an Android through fake credentials.
Google granted many “trusted” apps a wide range of permissions to compute within the Android architecture according to source. Bluebox has claimed that the vulnerability is present in Android 2.1 Eclair up till Android 4.3 Jelly Bean. Android 4.4 KitKat is immune to damage because of a shift from a vulnerable Adobe-centric plugin code. It seems that Adobe Flash is vulnerable to intrusion and exploit so Apple wins that battle. The current scenario is that smartphones and tablets are being affected with the Android Fake ID which is a real serious matter. The Android world is going paranoid at the moment but it is late than never and there is a solution which will be derived soon.
