A blog post by a security researcher cites an Android vulnerability that reportedly could be exploited to modify applications, Lucian Constantin writes. The discovery comes after Bluebox Security found a "masterkey" flaw in Android. "It is a different approach to achieve the same goal as with the previous exploit," said Pau Oliva Fora of ViaForensics. The vulnerability allows hackers to set bogus updates for users and then, when they are uploaded, the attackers could "access ... all the potentially sensitive data stored by those applications," Constantin writes.
Published in Brief: