Stop reading on the toilet - hackers are watching

If you're reading this on the toilet, put your phone down immediately and resume reading when you've finished up. People could be watching you through the camera.

All done and back with us? Good job, buddy.

Mobile security researchers at Zimperium have found an vulnerability in android phones which hackers could use to gain access to your camera, using a single text message.

If you receive this message (and you may not know you have received it) the hacker can take control of your whole phone, including the camera, your photos and messages, even those Angry Bird high-scores you've worked so hard for.

"It's really up to their imagination what they do once they get in," Joshua Drake, security researcher with Zimperium told NPR.

Mobile security experts at Zimperium have found a dangerous vulnerability which can allegedly be attacked using a simple message.

When the unlucky victim receives this text, the hackers can reportedly gain full control of it - accessing the camera, microphone and anything else they fancy.

"It's really up to their imagination what they do once they get in," said Joshua Drake, security researcher with Zimperium.

Your phone will be in their control before you even hear the tone

With most hacks the person getting hacked needs to do something wrong (like endlessly clicking on viruses and pop-ups telling you you can get an iPad for $5 using this simple hack).

With this attack the victim doesn't need to press a thing. The code would take over instantly the moment you receive the text message, with no input from yourself.

"This happens even before the sound that you've received a message has even occurred," says Joshua, security researcher with Zimperium and co-author of Android Hacker's Handbook. "That's what makes it so dangerous. It could be absolutely silent. You may not even see anything."

What can you do to stop it?

Zimperium advise that users stick to using the Android official messaging software, rather than third party programs, because this is "a tiny bit less dangerous". Third party programs often open text messages automatically, meaning the code could get to work without any input from you.

Google is currently working on a fix for the flaw in the Android security:

"The security of Android users is extremely important to us and so we responded quickly and patches have already been provided to partners that can be applied to any device.

"Most Android devices, including all newer devices, have multiple technologies that are designed to make exploitation more difficult.

"Android devices also include an application sandbox designed to protect user data and other applications on the device."

Until they've fixed it, keep your trousers on when you read your phone, for Christ's sake.

Comments