External Storage Puts Android Phones At Risk

Security Risks in SD cards : Android Apps vulnerable to new Attacks via microSD Cards

Security-Risks-in-SD-cards-3.jpg
Android is an infamous mobile operating system that powers more than billions of smartphones and tablets. It is a Linux-based open source Operating system developed by Google designed primarily for touchscreen mobile devices.
Since its launch in 2008, Android platform had gained immense popularity and is the trending OS now with 80% global market share. Its Open source model makes it a clear leader among mobile operating system as it provides flexibility and adaptability.
However, the open source model has placed devices running on Android platform in dire straits.
Open market model allows registered software developers to create applications for Android mobile devices in Java and list them in Android Market without undergoing review and waiting for approval.
Although Android’s developers have created set of rules for app developers to ensure the safety of their apps, developers rarely follow these guidelines. This gives cyber miscreants ample opportunity to leverage the loopholes to invade the device and exploit users.
For instance, Google’s Android documentation includes a set of security practices for app developers on the use of External Storage in their apps. Application developers are expected to follow these guidelines to reduce the likelihood of inadvertent security issues. However negligence towards these has surfaced Man-in-the-Disk attack, offering an opportunity to attack any app that is careless about their use of External Storage.
Let us learn a little about storage resources on Android devices and Security Risks in SD cards.

What is an External Storage ?

Android devices support two types of storage. These are:
  1. Internal Storage: This is an inbuilt storage also referred as System Storage provided in the device to store the OS, system apps and other app data. In Android OS, applications stored in Internal Storage are segregated by Android Sandbox. Sandbox is a security mechanism that is used for separating running apps to mitigate system failure or vulnerabilities from spreading.
  2. External Storage: It is a type of storage device inserted/plugged into a device. In cell phones it is often referred to the MicroSD card or USB driver.
Recently, researchers came across a flaw in the way Android apps use storage resources. Reckless use of External Storage by applications has resulted in a number of undesired outcomes (Security Risks in SD cards) like:
  • Stealth installation of potentially malicious applications on user’s phone.
  • Abrupt cease of service or crashing of legitimate apps.
Unlike Internal Storage, External storage particularly MicroSD cards do not support  Android’s built-in Sandbox protection. Hence, apps that reside in external storage are not segregated from each other. If developers fail to employ security precautions in their applications, it leaves the apps vulnerable to risks of malicious data manipulation.
Man-in-the-Disk attacks are configured to leverage the abusive way the storage resources are handled in External media.

Security Risks in SD cards : How is Man-in-the-Disk attack installed on the mobile device?

Meddling with the data occurs with a seemingly genuine application that appears important to users but hold attackers exploit script. Users are persuaded to install these applications on their device. These apps seek user’s permission to access the External Storage which appears perfectly normal and unlikely to raise any suspicion.
Hence, Man-in-the-Disk virus gets installed on the victim’s device without their knowledge.

How is Man-in-the-Disk attack dangerous?

Read Full News :- Click Here

Comments

Post a Comment

Popular posts from this blog

How to remove Speedtest-guide.com redirect from your system

Image
Guide to Remove Speedtest-guide.com redirect Speedtest-guide.com redirect is a nasty browser hijacker that changes the default browser settings such as home-page, search engine & new tab functionality. In addition to that, it displays annoying ads & causes infuriating redirects to dubious sites, thus deteriorating the web-browsing experience. This rogue browser redirector claims to be a free tool that can be used to test Internet speed & customize the web search. It also enables the users to keep a track of the previous tests & access speed boosting tips. While Speedtest-guide.com appears to be a useful & legit application, the users have reported of its questionable behavior. Firstly, to operate on a system, it requires modifying the browser settings without user’s permission. It does so to promote a fake search engine - Speedtest-guide.com. It causes unnecessary browser redirects & possesses the capability of tracking down user’s online
Read more

The novel DNS protocol helps Mozart Malware evade detection

Image
The nasty Mozart Malware has made a major comeback in the cyber-world. Yes, the devious malware known for infecting the Home Depot Inc, United States & breaching data is now using a novel DNS protocol to communicate with the remote hackers. This new DNS Protocol is also being used by Mozart Malware to remain under the radar of security solutions & other intrusion detection systems. Read on to know more about this backdoor malware. The First Attack of Mozart Malware Mozart malware made its first appearance in September 2014 after it hacked the Home Depot Inc., United States. According to the sources, this earlier unknown & unseen malware was specifically crafted to attack the Home Depot, the largest home development vendor in the United States. The word “Mozart” was observed in the software’s malicious code& it is suspected to have connections with the hacker’s system, the sources state. Read Full Article
Read more

How to remove ZUpdater.exe Trojan from your system?

Image
Guide to Remove ZUpdater.exe Trojan - ZUpdater.exe Trojan is a nasty threat to the Windows OS based devices. It uses the infected system’s resources to generate illicit crypto currency without the user’s permission or knowledge. Software Bundling & Free Programs are the prime methods used by ZUpdater.exe Trojan to proliferate its infection. Some of the free downloads offered on the internet do not reveal if other software is being installed in the background. Thus, they easily make their way into the system without user’s consent. Once ZUpdater.exe virus is installed, it consumes over 90% of the CPU’s power & graphics card power of the targeted system. This way, it makes the system extremely sluggish & deteriorates the performance of the PC. According to cyber-security analysts, while the system is running slow, hackers use computer’s resources to generate illicit revenue for themselves. Victims from around the world are looking for ways to remove
Read more