A new Android bug was discovered by security researchers which lets malware disguised as legitimate applications to steal passwords and other sensitive user data, creating a major vulnerability in almost every Android version. According to Techcrunch's latest report, all devices running Android 9.0 and earlier versions are vulnerable to the new Android bug called "Strandhogg 2.0", named after a term of Norse for a hostile takeover.
Also Read: [BREAKING] Tinder Date Stabbed to Death By Utah Man; Conversations on App Rise During The Pandemic
The company which discovered Strandhogg 2.0 delayed releasing details of the bug until Google could fix the critical-rated vulnerability since Promon still considers that many hackers could use it. Android's multitasking system, which allows users to quickly switch back and forth by keeping tabs on every recently opened app, can be abused by the Android bug.
When the victim installs a malicious app disguised as a normal app, Strandhogg 2.0 can be unknowingly downloaded. A fake login window will be visible once the victim opens the malicious app that will quickly hijack the Android device. Once the victim starts to type their passwords on the fake overlay, the hacker can siphon off their sensitive information to the cyber attacker's server. The malicious act will appear as a real login, making the process undetectable.
Also Read: [BREAKING] FBI Wants to Open Your Browser Without Any Warrant; Here's the Catch