Another Pothole Hackers Exploit Master Key Vulnerability Joyofandroid
Although both applications (used to find and schedule medical appointments) are valid, they have been modified by hackers. “Norton Mobile Insight – our system for harvesting and automatically analyzing android applications from hundreds of marketplaces – has discovered the first examples of the exploit being used in the wild. Symantec detects these applications as Android.Skullkey,” said the firm on their blog. “An attacker has taken both of these applications and added code to allow them to remotely control devices, steal sensitive data such as IMEI and phone numbers, send premium SMS messages, and disble a few Chinese mobile security software applications by using root commands, if available,” added Symantec....