Dubbed Strandhogg, the vulnerability resides in the multitasking feature of Android that can be exploited by a malicious app installed on a device to masquerade as any other app on it, including any privileged system app. Unpatched Strandhogg Android Vulnerability Actively Exploited in the Wild
In other words, when a user taps the icon of a legitimate app, the malware exploiting the Strandhogg vulnerability can intercept and hijack this task to display a fake interface to the user instead of launching the legitimate application.
This seems like a neat attack. Does anybody know of a legitimate use of the taskAffinity feature of android?