In a blog post, Microsoft warns Android users about a new wave of attacks called Dirty Stream. Such attacks allow attackers to modify files in the root directory of any application. For example, they can inject malicious code or steal sensitive information.
Now the discovered attack method is new – attackers can take full control of the applications. The vulnerability is exploited in the Android system: several applications use a special data exchange mechanism – the so-called content provider system. This solution is needed to control access to files used by multiple applications. Usually, security mechanisms block access to other programs. According to Microsoft, they can now be bypassed using a new attack if there were errors in the implementation.
Attackers can now infiltrate other applications with infected malware. This can cause that program to be corrupted and the original code to be replaced with the new code. This way, attackers will be able to change the way the program works, such as settings or files related to it.
A study conducted by Microsoft shows that system vulnerabilities are exploited quite often. According to Microsoft expert Dimitrios Valsamar, popular Android apps like Xiaomi’s file manager, which has been installed more than a billion times, are vulnerable. The attack also affects the WPS Office app, which has been downloaded about 500 million times. together. The developers of the respective apps have already been notified of the threats, so we should be getting updates soon.
However, it is possible that the new attack will not affect other programs as well.
“We believe that the vulnerability can be found in other apps as well. We are sharing our research so that developers can test their applications and, if necessary, make the necessary changes to prevent such vulnerabilities from appearing in new applications,” Microsoft said.
Google has reportedly revised its security guidelines and provides information about implementation errors in the content provider’s system. Android users can do little but keep their apps updated and download them only from official app stores.
Tags: Android phone immediately familiarize warning Microsoft
