Breaking News, World News and Taiwan News.
News
Opinion
Taiwan Living
Learn English
The China Post
Subscribe
China Post RSS  RSS Feeds

Hacking experts reveal new methods to attack Android smartphones

By Jim Finkle, Reuters
July 27, 2012, 12:17 am TWN
LAS VEGAS--Hacking experts on Wednesday demonstrated ways to attack Android smartphones using methods they said work on virtually all such devices in use today, despite recent efforts by search engine giant Google to boost protection.

Experts showed off their prowess at the Black Hat hacking conference in Las Vegas, where some 6,500 corporate and government security technology workers gathered to learn about emerging threats to their networks.

“Google is making progress, but the authors of malicious software are moving forward,” said Sean Schulte of Trustwave's SpiderLabs.

Google spokeswoman Gina Scigliano declined to comment on the security concerns or the new research.

Accuvant researcher Charlie Miller demonstrated a method for delivering malicious code to Android phones using a new Android feature known as near field communications.

“I can take over your phone,” Miller said.

Near field communications allow users to share photos with friends, make payments or exchange other data by bringing Android phones within a few centimeters of similarly equipped devices such as another phone or a payment terminal.

Miller said he figured out how to create a device the size of a postage stamp that could be stuck in an inconspicuous place such as near a cash register at a restaurant. When an Android user walks by, the phone would get infected, said Miller.

He spent five years as a global network exploit analyst at the U.S. National Security Agency, where his tasks included breaking into foreign computer systems.

'Wild West'

Miller and another hacking expert, Georg Wicherski of CrowdStrike, have also infected an Android phone with a piece of malicious code that Wicherski unveiled in February.

That piece of software exploits a security flaw in the Android browser that was publicly disclosed by Google's Chrome browser development team, according to Wicherski.

Google has fixed the flaw in Chrome, which is frequently updated, so that most users are now protected, he said.

But Wicherski said Android users are still vulnerable because carriers and device manufacturers have not pushed those fixes or patches out to users.

Marc Maiffret, chief technology officer of the security firm BeyondTrust, said: “Google has added some great security features, but nobody has them.”

Write a Comment
CAPTCHA Code Image
Type in image code
Change the code
 Receive China Post promos
 Respond to this email
Sponsors
The best place to buy custom tailored prom dress for your big day is at JennyJoseph.com
Save 75% for all hotels in Shanghai, Beijing and whole China. Lowest rates for Flights in China.
Myreviewsnow.net offer you the power of making informed purchases before you buy, with product reviews and online consumer myreviewsnow.net.
GlobalMarket.com is the largest China suppliers B2B directory can help you find quality made in China products, Promotional Products.
Select hotel by map and save 75% in thousands
hotels in Canton, Beijing and 500 cities in China.
Buy china wholesale products from reliable chinese wholesalers on DHgate.com!
Buy cheap eyeglasses online and save up to 80% over regular retail price when you buy prescription eyeglasses at cheapglasses123.com.
EyewearCanada.com offers prescription glasses from $5.95. 100% Satisfaction guaranteed.
"Dress First is the leading supplier of all kinds of dresses. You can buy your favorite suknie ślubne here."
Subscribe  |   Advertise  |   RSS Feed  |   About Us  |   Career  |   Contact Us
Sitemap  |   Top Stories  |   Taiwan  |   China  |   Business  |   Asia  |   World  |   Sports  |   Life  |   Arts & Leisure  |   Health  |   Editorial  |   Commentary
Travel  |   Movies  |   TV Listings  |   Classifieds  |   Bookstore  |   Getting Around  |   Weather  |   Guide Post  |   Student Post  |   English Courses  |   Terms of Use  |   Sitemap
  chinapost search