Digital Trends
Mobile

New Stagefright exploit could scare millions of Android users

Christian de Looper
By

Android Phones
If you’re an Android owner, it’s important to make sure that your device is always up to date, not just so you can take advantage of the great features that Google is constantly adding to the operating system, but also so you can avoid being left vulnerable to dangerous bugs. Case in point: Stagefright.

Security researchers have demonstrated exploiting the Stagefright bug, using it to remotely hack an Android phone, something that could be done to millions of other Android devices. The hack was recently described in a report from Wired, and would enable hackers to gain complete access to a devices’ files, which they could copy or delete, as well as access to the camera and microphone.

The bug was hacked by security research firm NorthBit, who claimed it had “properly” hacked the bug, which has been described as the “worst ever detected.” The hack that the team used is called Metaphor, and it was demonstrated in a video using the Google Nexus 5, however scarily enough the team has also reportedly hacked the likes of the LG G3, the HTC One, and the Samsung Galaxy S5.

While Google did promise regular security updates after Stagefright, and later Stagefright 2.0, was first discovered, it seems as though not all versions of Android have been patched just yet. The team was able to hack devices running Android 2.2, 4.0, 5.0, and 5.1. Thankfully, other versions of Android don’t seem to be affected by the issue. Of course that’s little consolation when a whopping 36 percent of Android devices run Android 5.0 or 5.1, leaving millions upon millions of users open to the hack. Basically, those that lack the latest security updates are vulnerably to the hack.

Stagefright is a software library that is written in C++ and is included inside Android. It is susceptible to being exploited when an MMS message with a video file is sent to the device in question, and if the video was coded in a certain way, it could be used to activate a malicious code. Stagefright 2.0 was later discovered, doing the same thing, but exploiting issues in mp3 and mp4 files. Google did start releasing patches for the bug, however it seems as though the company has not yet released patches for all versions of Android.

Check out the video below to see Stagefright being exploited on a Google Nexus 5.

Updated on 03-26-2016 by Christian de Looper: Clarified what Stagefright enables hackers to gain access to.

Editors' Recommendations

Don't Miss

Cyber Monday 2018: When it takes place and where to find the best deals
Up Next

This sponge-like polymer could revolutionize the way doctors treat spinal cord injuries
mobvoi ticpods free review feat
Product Review

These AirPod look-alikes are better in every way but one

With silicone eartips, water resistance, and a more palatable price tag, Mobvoi’s Ticpods Free are impressive AirPod doppelgangers. But for all the great things they have going for them, there’s one flaw holding them back.
Posted By Parker Hall
how to send a text from your email account
Computing

Latest SMS breach could allow hackers access to your online accounts

A new security breach that exposed more than 26 million text messages could be a huge nightmare for users relying on two-factor authentication. Many of the SMS on the database contained security codes and account reset links.
Posted By Chuong Nguyen
mediocre battery and a big notch slight googles otherwise perfect pixel phone google 3 xl review hero
Product Review

Mediocre battery and a big notch slight Google's otherwise perfect Pixel phone

Google’s Pixel 3 XL has two big flaws: The gigantic notch on the front, and mediocre battery life. That being said, this is the best Android experience you can find in a smartphone today.
Posted By Julian Chokkattu
Steam Link App
Gaming

Hacker finds Steam bug that unlocks free games, collects $20K for reporting it

Security researcher Artem Moskowsky discovered a Steam bug that allowed him to generate infinite free keys for any game. Instead of abusing the exploit, Moskowsky reported it to Valve, which gave him a $20,000 reward.
Posted By Aaron Mamiit
Pixel 3 taking a photo
Mobile

How to take great photos with the Pixel 3, the best camera phone around

You’ve scored yourself a new Google Pixel 3 or Pixel 3 XL, and you want to take advantage of that incredible camera. We’ve got everything you need to know right here about how to snap the best photos with your Pixel 3.
Posted By Simon Hill
Wear OS - Google Asssitant
Wearables

Google's Wear OS update 'H' promises battery life improvements

Google has rebranded its Android Wear operating system to Wear OS. Removing the Android name may help people better understand Google-powered smartwatches, which also play nice with iOS devices. 
Posted By Brenda Stolyar
Huawei flagship at AT&T
Smart Home

Huawei could soon take on Google and Amazon with a new digital assistant

According to a report from CNBC, Huawei is working on a new digital assistant that could try to take on the likes of Google and Amazon's Alexa. Huawei already has a digital assistant in China, but the new one will be aimed at markets…
Posted By Christian de Looper
Pixel 3 taking a photo
Mobile

Leak shows a third, budget Google Pixel 3 with a Snapdragon 670, headphone jack

The Google Pixel 3 and Pixel 3 XL are considered to be two of the best Android smartphones, but it looks like Google could be prepping a third. A budget Pixel 3 device that boasts some of the best features of the other two has been leaked.
Posted By Christian de Looper
verizon withdraw yahoo store
Mobile

Use multiple phone numbers on one device with Verizon’s ‘My Numbers’ app

For those who have separate phone numbers and devices for your work and personal lives, Verizon wants to help you get more organized. With its new "My Numbers" app, you can use up to four additional phone numbers on a single smartphone.
Posted By Brenda Stolyar
nimble eco friendly battery packs wireless charging pads
Mobile

Need a quick battery boost? Try one of our favorite portable chargers

Battery life still tops the polls when it comes to smartphone concerns. If it’s bugging you, then maybe it’s time to snag yourself a portable charger. Here are our picks of the best portable chargers.
Posted By Simon Hill
how to use Instagram Stories
Mobile

Instagram tool accidentally exposes user passwords. Were you affected?

Instagram's Download Your Data tool accidentally exposed the passwords of a small number of users. Here is the explanation on what happened, and how to find out which Instagram accounts were compromised.
Posted By Aaron Mamiit
ipad pro fails bend test
Mobile

New iPad Pro’s durability in question after it fails YouTuber’s bend test

The new iPad Pro models failed a bend test that was carried out by popular YouTuber JerryRigEverything. The result raises questions about the durability of the tablets, especially since customers are also reporting bending issues.
Posted By Aaron Mamiit
Pixel 3 recovery mode
Mobile

How to use recovery mode to fix your Android phone or tablet

If you’re having a problem you can’t seem to resolve with your Android device, or maybe you want to update it or wipe the cache, recovery mode could be what you’re looking for. Here's how to use it.
Posted By Simon Hill
Deals

Black Friday 2018: The best deals so far

Black Friday is the biggest shopping holiday of the year, and it will be here before you know it. If you can't wait until November 23 to start formulating a shopping plan, we've got you covered.
Posted By Jacob Kienlen