A security flaw allows the attackers into Android devices read more at here www.spinonews.com/index.php/item/1418-a-security-flaw-allows-the-attackers-into-android-devices
IT security researchers from the University of Amsterdam have discovered a security flaw in the memory chip design used in Android Devices. The flaw allows the attackers to target a specific memory chip and thus gaining control of the entire system.
The attack goes by the name of Rowhammer which is not new. Previously, security researchers found a similar flaw in systems running on Linux. The flaw could also be exploited to launch a Rowhammer attack. However, this time the Android devices that are in danger.
Primarily, the attacker implants the code in such an app. When the code is executed, the app keeps on accessing a specific row of transistors. It is a repetitive process which causes that row of transistors to cause an electric disturbance with the rows nearby. This leads to a leak in electricity, which eventually results in a bit flip.
A bit flip in turn, is simply the interchange of bits of data in random positions. Due to such randomization of bits, the attacker can change values of data stored on the chip and gain access to the victim’s device.
To test the attack, the researchers themselves devised an attack aimed at mobile devices such as Samsung, LG etc., The project was named “DRAMMER”. The mechanism allowed the researchers to gain root access to the victim’s device.
The vulnerability has already been reported to Google for which Google awarded the researchers a sum of $4000. It states that it is crucial to fix the issue and we can expect an update coming soon in November.
Comments
Post a Comment