It’s been revealed that there’s a new vulnerability called StrandHogg discovered by the mobile security vendor Promon that could give hackers access to users’ photos, phone logs, contacts, and more.
You probably already know by now that Android apps in the Google Play Store have been frequently the target of malware designed to infect mobile devices and steal users’ personal data.
If this happens, Google has to clean up the mess and remove the malicious apps until the next time such a disaster occurs and so on.
The latest malware vulnerability affects all Android devices by targeting banking apps in an attempt to compromise user data and get access to users’ financial accounts.
StrandHogg allows malicious actions
The bug was discovered by Promon, and it’s been dubbed StrandHogg. This allows malicious applications to pose and legit ones and gives hackers access to private SMS messages and photos.
It can also steal log-in credentials, record phone conversations, track the movements of users, and spy on people via the phone’s camera and microphone, and more.
This is noted in a Promon press release posted on Monday.
Security researchers at Promon have been analyzing real malware that exploited the vulnerability, and they discovered that all the top 500 most popular apps were at risk. All versions of Android have been affected, and this includes Android 10, as well.
Lookout who is Promon’s partner and a security company confirmed that there were 36 malicious apps that have exploited the flaw so far, according to TechRepublic.
Google eliminated the malicious apps
The good news is that Google eliminated the malicious apps from its Play store, said a statement sent to BBC News and TechRepublic.
“We appreciate the researchers’ work, and have suspended the potentially harmful apps they identified,” Google stated.
The tech giant continued and said that “Google Play Protect detects and blocks malicious apps, including ones using this technique. Additionally, we’re continuing to investigate in order to improve Google Play Protect’s ability to protect users against similar issues.”