The Indian Computer Emergency Response Team (CERT-In) under the Ministry of Electronics and Information Technology (MeitY) has warned Android users in India about spy malwares.
According to an advisory issued by CERT-In, Android users are at a risk and the warning has been rated as severe because user personal data can be hacked. The advisory stated that this vulnerability is present only in those Android phones which are not updated to Android 10 and are running on an older OS.
CERT-In said that the attackers are looking for a vulnerability that can be used to spy on phone users which can be either via phone mic, or camera. The hackers can also access the location details via GPS if the device is compromised. Once hacked, the device can help the attackers get hold of personal information including messages, conversations as well as login credentials.
Further, CERT-In in a statement added that an elevation of privilege vulnerability named StrandHogg 2.0 has been reported in the Google Android due to confused deputy flaw in the ‘startActivities()’ of ‘ActivityStartController.java’. This can help the attacker to hijack any application on an infected device. The vulnerability can be exploited by installation of a malicious software (app) on a device which the user will not be able to locate as it will be hidden behind legitimate apps.
To this end, the advisory has asked all the users to install all the updates and patches that have been issued. Also, users are strongly advised to not download anything from any untrusted source or random links that are sent from an unknown source.
