Click to Skip Ad
Closing in...
  1. Amazon Kitchen Gadgets
    08:08 Deals

    This $20 Amazon kitchen gadget went viral on TikTok, and it’s mesmerizing

  2. Best Camera Drone Deal
    08:45 Deals

    Amazon’s best camera drone deal is a 2K drone that folds up as small as an iPhone fo…

  3. True Wireless Earbuds Price
    14:36 Deals

    SoundPEATS true wireless earbuds price on Amazon is way lower than it should be

  4. Amazon Air Fryer Deals
    11:58 Deals

    Amazon air fryer deals: Get an amazing $129 smart air fryer with Alexa for $69

  5. Amazon Deals
    09:59 Deals

    Today’s top deals: $65 foldable 2K camera drone, insane air fryer deal, $35 Echo Dot…

Researchers learn how to hack your phone’s Gmail app at a stunning 92% success rate

August 21st, 2014 at 4:45 PM
Malware Hack for Android, iOS and Windows Phone

While Android is usually the mobile platform of choice for hackers, new research that’s about to be presented at the USENIX Security Symposium in San Diego shows that it’s actually possible to use a newly discovered trick to steal data from an unsuspecting smartphone users’ apps, whether they’re running Android, iOS or Windows Phone, reports.

Researchers have discovered a clever way of spying on a targeted device in real-time and stealing information that takes advantage of the way apps work on a smartphone. Even though the researchers only tested their findings on Android, they believe they can exploit it in a similar manner iOS and Windows Phone.

“The assumption has always been that these apps can’t interfere with each other easily,” Computer Science and Engineering Department at UC Riverside researcher Zhiyun Qian said. “We show that assumption is not correct and one app can in fact significantly impact another and result in harmful consequences for the user.”

The researchers used the method to hack the following apps: Gmail (92% success rate), H&R Block (92% success rate), Newegg (86% success rate), WebMD (85% success rate), CHASE Bank (83% success rate), (83% success rate) and Amazon (48% success rate).

However, while the procedure can help them steal data from apps, certain conditions have to be met. For starters, a malware app has to be installed on the device, but nothing as complex as described in some reports. Instead, a wallpaper app may be enough to get the job done.

“Once that app is installed, the researchers are able to exploit a newly discovered public side channel—the shared memory statistics of a process, which can be accessed without any privileges,” the publication writes, explaining that Shared memory is a “common operating system feature to efficiently allow processes share data.”

Changes in shared memory can be monitored, and the researchers can correlate them to what the user is doing to track his or her actions in real-time and capture the information at the right moment.

In order to work, the attackers need to monitor the device and perform the attack exactly when the user does the desired action, whether it’s logging into an online banking app or shopping, as the malware program won’t be able to simply keep a log of what the user is doing.

Demo videos showing how this hack can be used to retrieve data in real-time from a target device, including login credentials, credit card details and even pictures are available at the source link.

Chris Smith started writing about gadgets as a hobby, and before he knew it he was sharing his views on tech stuff with readers around the world. Whenever he's not writing about gadgets he miserably fails to stay away from them, although he desperately tries. But that's not necessarily a bad thing.

Popular News