View Single Post
Old August 13th, 2013, 03:02 AM   #8 (permalink)
Senior Member
Thread Author (OP)
ironass's Avatar
Join Date: Aug 2010
Location: Cotswolds, England
Gender: Male
Posts: 8,772
Device(s): SGS5 SM-G900F. Rooted. KitKat 4.4.4. CM11 ROM. Baseband: NJ1. CM kernel+TWRP.
Carrier: Vodafone

Thanks: 1,193
Thanked 3,957 Times in 2,609 Posts

It would appear that cyber criminals are not slow to catch on to the Android Master Key exploits and more examples are cropping up...

More Exploits for Android 'MasterKey' Vulnerability Turn Up in the Wild

Researchers find trojanized banking app that exploits critical Android bug

The chances are that if you have received a firmware update for your device in the last 3 or 4 months, it will have a fix for 1 of the 2 identified exploits, Bug #8219321, but not the Bug #9695860 which Android has also issued a patch for but, as yet, has not made its way to any firmware releases yet.

You can check to see which of the Bugs you are vulnerable to by installing and running SRT AppScanner, free from the Google Play Store.

App developers are also starting to take these exploits seriously...

Android Flaw Puts Bitcoin Wallet Apps at Risk of Theft

Some degree of protection is offered by only using the Google Play Store and ensuring that installing apps from, "Unknown sources", is deselected on your device. Antivirus software will not prevent the Master Key exploits and may, or may not, detect them after installation.

You should also ensure that you have the very latest firmware installed for your device.

In the meantime, for rooted users, there is the fix mentioned earlier.
Did you know that hitting the Thanks button is quicker than typing it and the Search button is your friend.

Dummies Guides Rooting Galaxy S4 * Know Your S4 * Update Problems * Knox Security * Bloatware * GPS
ironass is online now  
Reply With Quote
The Following 2 Users Say Thank You to ironass For This Useful Post:
Hawker (August 13th, 2013), Rudedawg (August 14th, 2013)