![]() ![]() Kunushevci identified that when he answered a Skype call, a number of phone app functions such as photo-sharing and contacts became accessible despite the fact that the phone was locked. There is a link between the Skype call and the unlocking of the phone because as soon as the call is received, the person can easily access all the data that is stored on the phone. Kosovo-based Kunushevci also demonstrated the method in a YouTube video that shows how someone having the possession of an android phone can receive a Skype call without unlocking the handset. Then I had to change the way of thinking as a regular user into something that I can use for exploitation,” explains Kunushevci. “One day I got a feeling while using the app that there should be a need to check a part which seems to give me other options than it should. ![]() Kunushevci identified the flaw while he was using the Skype app for Android and discovered something unusual in the way the app was accessing local files on the phone while making VoIP calls. This flaw is indeed going to help pranksters, malicious threat actors, and identity thieves as it has great potential for exploitation. See: New Malware Targets Skype Users, Saves Screenshots, Records Conversationsįlorian Kunushevci, the bug hunter who identified the vulnerability ( CVE-2019-0622), claims that a person owning Android phone can receive a Skype call without even unlocking the phone apart from accessing other data. ![]() Once the phone is unlocked, the attacker can view everything from contacts to photos, send SMS messages and may also open browser windows. A 19-year old bug hunter has identified a flaw in the Android version of Microsoft’s Skype app, which is exploited can help the attacker access various app functions without needing to go through passcode verification for unlocking the phone. ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |