Dubbed Strandhogg, the vulnerability resides in the multitasking feature of Android that can be exploited by a malicious app installed on a device to masquerade as any other app on it, including any privileged system app.
In other words, when a user taps the icon of a legitimate app, the malware exploiting the Strandhogg vulnerability can intercept and hijack this task to display a fake interface to the user instead of launching the legitimate application.
Unpatched Strandhogg Android Vulnerability Actively Exploited in the WildThis seems like a neat attack. Does anybody know of a legitimate use of the taskAffinity feature of android?
#
android #
security #
0day #
malware
