Author: Minda Zetlin / Source: Inc.com
Do you like downloading and trying a wide range Android games and apps? You may want to rethink that habit, or at least proceed with caution. A newly disclosed Android vulnerability means miscreants can use apparently harmless apps to fool you into giving them “permission” to take control of your phone or tablet and watch everything you do with it.
Researchers at UC Santa Barbara and the Georgia Institute of Technology recently revealed a vulnerability they call Cloak & Dagger that can let miscreants use your phone’s own permissions against you. It works like this: You download and run a new app. As so many apps do, it pops up an opening screen that asks you to to agree to something. That something could be almost anything: Click here to watch our tutorial video. Or proceed to the game. It doesn’t really matter what the app appears to be asking you to do. What it’s really doing is asking your permission for administrative powers that let it use your phone for…whatever it likes.
How does it manage to fool you? Using an Android feature called “Draw over other apps,” in which an image…
Click here to read more