Follow Us:
Monday, May 16, 2022

Cybersecurity: 95 per cent of Android devices were affected in Q3, 2015, says Trend Micro

Android’s Mediaserver component, which handles media-related tasks, recently became and is likely to remain an active attack target.

By: Tech Desk | New Delhi |
November 24, 2015 9:30:37 pm

In total, five different vulnerabilities in media processing in Android were attacked in Q3, 2015. The Stagefright vulnerability affected nearly 95 per cent of all Android devices out there, according to a new Trend Mirco report.

Stagefright22 (CVE-2015-3824), which allows attackers to install malware on affected devices by distributing malicious Multimedia Messaging Service (MMS) messages, reportedly put 94.1% of Android devices (as of this July) at risk.

“We also found a bug that could render Android phones silent and unable to make calls or send text messages. Reports said more than 50% of Android devices (as of this July) were vulnerable to this flaw. Another critical Mediaserver vulnerability (CVE-2015-3823)25, which could cause devices to endlessly reboot and allow attackers to remotely run arbitrary code, was also found,” said the cybersecurity firm in a statement.

At that time, 89% of Android devices were susceptible to exploitation. CVE-2015-3842, which could allow remote code execution in Mediaserver’s AudioEffect component, also figured in the landscape this August 26.

Best of Express Premium

UPSC CSE Key – May 16, 2022: What you need to read todayPremium
Modi in Lumbini: Buddhism provides India a cultural inroad in Nepal – it ...Premium
The angry young brigade of Sharad ‘Mr Congeniality’ PawarPremium
Explained: How heatwave is again sweeping across IndiaPremium

In response to the recent spate of Android vulnerability discoveries, Google finally announced regular security updates for the platform. “We have yet to see how the platform’s current state of fragmentation will affect this plan. Security patches may not be able make their way to all devices without the support of manufacturers and carriers, rendering them vulnerable to exploitation,” it said .

Android’s Mediaserver component, which handles media-related tasks, recently became and is likely to remain an active attack target. “This past quarter alone, we’ve seen attackers exploit at least five vulnerabilities in the service,” added the report.

The discovery of Mediaserver vulnerabilities in Android highlighted the need for a more integrated set of security strategies across Google, manufacturers, and carriers. Modified versions of app-creation tools like Xcode and Unity also dispelled the notion that Apple’s walled garden approach to security can spare iOS from attacks.

“Attackers continued to take advantage of gaps in security to trail their sights on mobile device users, regardless of platform, thus furthering the already-exponential growth of mobile malware,” the report said.

For all the latest Technology News, download Indian Express App.

  • Newsguard
  • The Indian Express website has been rated GREEN for its credibility and trustworthiness by Newsguard, a global service that rates news sources for their journalistic standards.
  • Newsguard