A Clever Android Hack Takes Advantage of Sloppy Storage

More from: | Wired |

An Android app has two choices for where to put its data on a device: internal storage, where it’s safe and snug, isolated by the operating system’s sandbox, and external storage, where data can move between apps but isn’t as protected. Most of the time, that setup works just fine. But when developers use the latter incorrectly, they could give hackers a crucial foothold.

That’s the focus of new research from Check Point security researcher Slava Makkaveev, who will present his findings at the DefCon security conference Sunday. By stashing the wrong things in external storage, an app can expose an Android phone to a host of potential attacks, including secret installation of malware, shutting down legitimate apps, and


Read full article » https://www.wired.com/story/android-hack-external-storage-man-in-the-disk

About | Wired |

WIRED IS WHERE tomorrow is realized. It is the essential source of information and ideas that make sense of a world in constant transformation. The WIRED conversation illuminates how technology is changing every aspect of our lives—from culture to business, science to design. The breakthroughs and innovations that we uncover lead to new ways of thinking, new connections, and new industries. WIRED reaches more than 30 million people each month through WIRED.com, our digital edition, the magazine, social media, and live events.

»Twitter: @wired »Facebook: @wired »YouTube: WIRED