Android Malware Exploits Recently Patched 'Toast' Flaw

7 years ago
November 10, 2017
1 reply
170 views

+54

Jasper_The_Rasper
Moderator
11602 replies

By Eduard Kovacs on November 10, 2017

Researchers at Trend Micro have spotted the first known piece of malware to exploit a recently patched vulnerability affecting the Toast feature in Android.

The flaw, reported to Google by researchers at Palo Alto Networks, enables malicious actors to launch overlay attacks by abusing Android’s Toast feature, which allows applications to display messages and notifications on top of other apps. The feature is named Toast because the notifications pop up on the screen just like toast.

Overlay attacks are commonly used by Android malware for phishing attacks, but using Toast provides some advantages, including the fact that it does not require the same types of permissions as other windows, and it allows an app to display a window that covers the device’s entire screen.

Full Article.

R

retiredAntus67
Community Guide
5988 replies
7 years ago
November 10, 2017

Constant awareness and proactive on this issue is needed.These hackers won't stop and we must not either.

Reply

Related Topics

Exploit for Recently Patched Flash Flaw Added to Magnitude, Neutrino, Nuclear Pack

Black Energy Malware May Be Exploiting Patched WinCC Flaw

Crooks exploit CVE-2018-7602 Drupal flaw, aka Drupalgeddon3 to deliver Monero miner

Zero-day privilege escalation disclosed for Android

Hackers use PHP exploit to backdoor Windows systems with new malware

Sign up

Login to the community

Scanning file for viruses.

This file cannot be downloaded