Security researchers expose Gmail smartphone hack

security researchers expose gmail smartphone hack big app
Researchers from the Universities of Michigan and California say they’ve come up with a smartphone hack that can get into your Gmail account via your mobile device. A number of apps are affected by the vulnerability but Gmail was exploited with a 92 percent success rate.

According to the details of the research, the hack — as you might expect — relies on a malware app posing as a genuine bit of software, so you should be safe if you take good care over what’s allowed to run on your handset. Once the malicious code is in place it can use a mobile device’s shared memory to jump into other apps, including Gmail.

Related: Gmail acts to sort out new scam using non-Latin characters

“The assumption has always been that these apps can’t interfere with each other easily,” said Zhiyun Qian, one of the team working on the project. “We show that assumption is not correct and one app can in fact significantly impact another and result in harmful consequences for the user.” Banking apps were also successfully breached using the same method.

The hack relies on being able to predict what the user will do next and timing an interception perfectly, so some apps proved more vulnerable than others. Of the seven apps tested, Gmail was the easiest to access while the Amazon app was the most difficult. The exploit was run on an Android phone though the researchers say the same principles can potentially be applied to iOS and Windows Phone.

Thanks to the procedures put in place to block and root out malware, the vulnerability reported here shouldn’t worry the majority of users. Nevertheless it’s a working demonstration of how a device’s shared memory can be misused, and another reminder to take care with your app installs — particularly if you’re on a rooted device.

A Google spokeswoman welcomed the report: “Third-party research is one of the ways Android is made stronger and more secure,” she said. The findings will be revealed in full at the USENIX Security Symposium in San Diego.

[Header image: Alexander Supertramp / Shutterstock.com]

News

Worried about how FaceApp is using your photos? Here’s how to delete your data

Are you concerned about your privacy with FaceApp? If so, you might want to delete your data from the app. The app has come under fire for its terms of service and privacy policies that it can use your face photos in any way it wants to. 
Mobile

Text up a storm with the best messaging apps for iOS and Android

These days, most people tend to favor digital messages over phone calls. We have the best messaging apps that allow you to share photos and documents, send text messages, and more with end-to-end encryption.
Cars

Waze now tells you the cost of toll roads along your route

Navigation app Waze now tells you how much you'll be paying for toll roads, should you decide to take them. Enter your route and the app will display the various tolls you'll be paying on that particular trip.
Mobile

Apple backs down, returns parental control app OurPact to App Store

Parental control app OurPact has returned to the iOS App Store, several months after it was removed due to privacy concerns. In April Apple removed parental control apps which used a technology called Mobile Device Management (MDM).
Mobile

St. Paul, Minnesota, is the latest U.S. city to access Verizon's 5G network

Verizon is in the midst of a massive 5G rollout. Its mobile 5G network is now available in select areas of several cities such as Chicago and Denver. Here's everything you need to know about Verizon's 5G network.
Mobile

Renders suggest the Huawei Mate 30 Pro may have a special cinematic camera lens

The Huawei Mate 30 and Mate 30 Pro may join the Mate X folding phone as the company's star products for late 2019. This is what we know about the Huawei Mate 30 and Mate 30 Pro so far.
News

AT&T accused of selling customers’ location data to bounty hunters and stalkers

AT&T was hit with a lawsuit Tuesday accusing it of selling customers’ real-time location data to third parties like credit agencies and bail guarantors, along with bounty hunters and stalkers, without having customer consent. 
Mobile

A.I. photo filters use neural networks to make photos look like Picassos

Artificial Intelligence apps put a novel spin on social network-style photo filters. Instead of just overlaying an effect, these photo filters use machine learning and neural networks to transform an image into a predetermined style.
Mobile

Samsung’s latest RAM chips can move data superfast on your next-gen smartphone

Samsung just announced its fastest RAM chips yet, boasting 44 GB/s transfer speeds with LPDDR5 technology on a 10-nm process. These 12-gigabyte monsters are meant to take 5G and A.I. to the next level on your next-gen smartphone.
Mobile

Big, beautiful, and breakable: Check out the best Galaxy S8 Plus cases

There’s no denying Samsung’s ability to turn out an attractive smartphone, but glass curves are expensive to fix and metal chips easily. We've rounded up the best Galaxy S8 Plus cases on the market.
Wearables

FCC filing reveals impressive specs for luxury Movado Connect 2.0 smartwatch

It's been a while since we saw a smartwatch from luxury watchmaker Movado, but that drought may be over soon. FCC filings for the Movado Connect 2.0 have surfaced, and they paint a picture of a high-spec smartwatch.
Deals

Amazon Prime Day deals are ending, but you can still get great bargains

Prime Day 2019 has come to an end for Amazon, but that doesn't mean the Prime Day deals are over. With deals from Walmart, Best Buy, and Amazon still going on, this massive shopping event is continuing on through the week.
Mobile

T-Mobile wants to give you a free smartphone when you add a line

Did someone say free smartphones? T-Mobile is offering free smartphones from a select range of affordable phones when a new line is opened on its $40 per month per line Magenta tier and above.
Mobile

Get your game on with the best controllers for Android smartphones

If you're looking to do some serious gaming on an Android device, you're going to need a gamepad. Here are the best controllers for Android games on smartphones and tablets, with rechargeable and wireless options.