Time to buy an iPhone?

[foxidrive]

According to security firm Zimperium a flaw called "Stagefright" in Google's Android operating system can allow hackers take over a phone with a message even if the user doesn't open it. The vulnerability affects about 950 million Android devices. In a blog post Zimperium researchers wrote: "A fully weaponized successful attack could even delete the message before you see it. You will only see the notification. These vulnerabilities are extremely dangerous because they do not require that the victim take any action to be exploited. Unlike spear-phishing, where the victim needs to open a PDF file or a link sent by the attacker, this vulnerability can be triggered while you sleep. Before you wake up, the attacker will remove any signs of the device being compromised and you will continue your day as usual—with a trojaned phone."

Oh oh, again.

 

[misi]

Unlike spear-phishing, where the victim needs to open a PDF file or a link sent by the attacker, this vulnerability can be triggered while you sleep.

I just can't believe that it's possible.
Could they make Android that vulnerable?
To install things without permission from the phone's owner?

 

[foxidrive]

Could they make Android that vulnerable?
To install things without permission from the phone's owner?

It must be a flaw that is exploited.

UIAM there have been vulnerabilities in Windows where merely loading a web page, downloads and runs malware on your computer. They call them "Drive-by downloads"