Android Fake ID

If you are using Android on your mobile device, your personal and financial details could be at risk to the recently discovered ‘Fake ID’ vulnerability.

The ‘Fake ID’ vulnerability, discovered by BlueBox Labs can affect users of Android 2.1 through to 4.3 – exploiting a flaw in the app security certificate system (Digital IDs).

Malicious apps can fake the identity of other installed apps, allowing them access to the personal and financial details stored on your device.

BlueBox believe this could potentially be a bigger problem than the ‘Master Key’ bug they discovered last July.

So how can you protect yourself?

Upgrade your Android OS, patch your current version, or if neither of these are possible, ensure you only download your apps from Google’s own Google Play Store.

Discussion

Leave a Reply