It is once again a matter of concern for Android users. The nearly 6-month-old bug has made a comeback in Android once again and aims to break into users’ personal data.
Security researchers have found a major flaw in almost every version of Android. Through this flaw, hackers can steal the passwords and other sensitive information of the apps used by Android users. This drawback of Android is named StrandHogg 2.0. The special thing is that about 90 percent of Android users are affected by this. Researchers at the security firm Promon say that hackers have taken advantage of an old flaw in Android’s code.
Fake app like Authentic app
Due to this drawback of Android, all devices running on Android 9.0 and earlier versions have been affected. According to the security agency, a bug came about 6 months ago, and the new flaw is another version of the same. When the Strandhogg 2.0 bug appears, users feel that they are entering their password in an Authentic app, when in fact they are using a malicious overlay. Strandhogg 2.0 can also hijack other app permissions to learn user data such as contacts, photos, and real-time location.
Now, Google has confirmed that a patch has been released to scan apps on the Google Play Store. This tool detects the problem and alerts users. Google has advised its users to update the apps and systems to prevent possible problems.
Strandhogg 2.0 is more dangerous than the previous bug
In a conversation with TechCrunch, Promon’s founder and Chief Technology Officer Tom Leesimson Hansen stated that Strandhogg 2.0 is more dangerous than previous bugs because it is almost impossible to detect. The good thing is that according to Promon, no evidence has been found that hackers have used this bug in recent hacking incidents.
The biggest problem is that this bug allows malware apps to look like real apps. That is, a user’s device looks like a real application. Due to which users enter their personal information without realizing the real app. StrangHogg 2.0 is embedded in apps and takes advantage of Android’s multitasking system. In particular, it hijacks the Authentic apps waiting for them to open. The hijack app then displays a login page with an overlay page that steals the username password. Worst of all, this app makes a dent in sensitive data i.e. photos, location data to messages.
Play protect active
Google says that Play Protect service rollout has been released in devices to overcome this bug. This service is available on Google Play store and turns on by default. But this does not mean that everyone is safe because this feature can also be a turnoff. For those who have turned this feature off but are using an older version of Android, Google recommends that Play Protect be activated again.
Users who are using Android 10 should also keep Play Protect active. This feature has been specially made for such flaws. Apart from this, users can also use many anti-virus and security apps which is available on the Google Play Store.