The San Francisco-based Zimperium Mobile Security warned that aflaw in the Android media library Stagefright has left 95% of anestimated 950 million Android-based mobile devices susceptible toremote code execution vulnerabilities.
“Built on tens of gigabytes of source code from the Android OpenSource Project, the leading smartphone operating system carries ascary code in its heart,” Zimperium stated in its blog. “NamedStagefright, it is a media library that processes several popularmedia formats. Because media processing is often time-sensitive,the library utilizes native code (C++), which is more prone tomemory corruption than memory-safe languages like Java.”
Zimperium added, “Attackers only need your mobile number toremotely execute code via a specially crafted media file deliveredvia MMS. A fully weaponized successful attack could even delete themessage before you see it. You will only see the notification.”
Continue Reading for Free
Register and gain access to:
- Breaking credit union news and analysis, on-site and via our newsletters and custom alerts.
- Weekly Shared Accounts podcast featuring exclusive interviews with industry leaders.
- Educational webcasts, white papers, and ebooks from industry thought leaders.
- Critical coverage of the commercial real estate and financial advisory markets on our other ALM sites, GlobeSt.com and ThinkAdvisor.com.
Already have an account? Sign In Now
© 2024 ALM Global, LLC, All Rights Reserved. Request academic re-use from www.copyright.com. All other uses, submit a request to [email protected]. For more information visit Asset & Logo Licensing.
Roy Urrico
Roy W. Urrico specializes in articles about financial technology and services for Credit Union Times, as well as ghostwriting, copywriting, and case studies. Also: writer/editor of a semi-annual newsletter for Association for Financial Technology since 1997 and history projects funded by the U.S Interior Department, National Park Service and Warren County (N.Y.).
