Updated:11:43 AM EST Jan 17

this is ggmania.com subsite Google Camera Flaw (Android) - TechAmok



490+ kilometers per hour - Bugatti Chiron
NVIDIA's Next-Generation Ampere GPUs to be 50% Faster than Turing
What If Earth Was Hit By A Grain Of Sand Going Light of Speed
i9 10900K is up to 30% faster than the i9 9900K
You Can Still Upgrade To Windows 10 For Free
KENOBI - A Star Wars Fan Film
Breaking Into a Smart Home With A Laser
Gorilla Suddenly Punches Glass
Extended Security Updates will extend to 2023 for MSE on Windows 7
The best pics on the Internet #270
The best pics on the Internet #269
Who pays the lowest taxes in the US?
InvisibleShield Offers Camera Lens Protection
The best pics on the Internet #268
Dangerous tattoo remover from eBay is a MILLION watt laser
AMD Announces the Radeon RX 5500 XT Graphics Card
Apple sues former chip designer for breach of contract
How to Extend Your Windows 7 Security Updates Past January 2020

A Gibbon's Screams Are Very, Very Weird
Lock Makers, Please Stop!
Guns Akimbo - Official Trailer
NVIDIA GeForce 442.01 Hotfix Driver
AMD Releases Radeon Software Adrenalin 20.1.2 Drivers
Samsung Galaxy S20+ shown off in hands on video
Serious security vulnerability in a core cryptographic component
Microsoft's Windows 7 Reaches End-Of-Life
Giant Boeing 747 Vertical Takeoff
E:60 - Meet 'The Michael Jordan of Dogs'
Marcin Patrzalek: Polish Guitarist MURDERS His Guitar!
Disturbed - Down With The Sickness in 20 Styles
Samsung XCover Pro Targets Businesses
Microsoft will support Edge on Windows 7 for at least 18 months
Samsung's booth: the Galaxy Chromebook, The Wall, and more
Dell Shows Off Foldable and Dual Screen Laptops at CES
Google Pay Now Supports Student ID Cards

Google Camera Flaw (Android) - [security]
03:53 PM EST - Nov,19 2019 - post a comment

The thought of a stranger hijacking your camera and being able to see what you are doing without your knowledge is the stuff of nightmares for most people. Our phones tend to follow us into every area of our lives. Checkmarx decided to see if the cameras that are built into Android phones might be vulnerable to hacking. For their testing, the team took a Pixel 2 XL and Pixel 3 smartphone and began to probe the Google Camera app. The team found that there were a number of "concerning vulnerabilities" in the Google Camera app. They also found that the same vulnerabilities impact the camera apps of other smartphone vendors in the Android ecosystem. They specifically cited Samsung's camera app as vulnerable. The team found in testing that by manipulating specific actions and intents, an attacker can control the app to take photos and record photos through a rogue process that should have no permission to do so. Checkmarx also notes that it found specific attack scenarios that could enable malicious actors to circumvent various storage permission policies to give them access to stored videos and photos along with GPS metadata embedded in photos; that data could be parsed to locate the user. One way the researchers found enabled a rogue application to force the camera to take pictures and record videos even if the phone is locked or the screen turned off. The researchers were able to force video and images to be taken even when the user was in the middle of a voice call. Allowing an app to receive input from the camera, mic, and GPS location is highly invasive, according to Google (or course). The team was able to design an attack scenario that circumvents the permission policy by abusing the Google Camera app itself. The vulnerability has to do with giving permissions to external storage, which provides an app with access to the entire SD card. The team says that when activated during a voice call, the hacker could record the voices on both ends of a conversation. Checkmarx says that it has already notified Google of its findings, and the company updated vulnerable versions of the Camera App in July 2019.

Short overview of recent news articles

Jan,10 2020 This Byton electric car has a 48-inch screen
Jan,10 2020 AMD Releases Radeon Software Adrenalin 20.1.1
Jan,09 2020 Intel Unveils Xe DG1-SDV Graphics Card
Jan,09 2020 Brahms: The Boy 2 - Official Trailer
Jan,09 2020 New Shock-Absorbing Material for Phone Cases Doesn't Block 5G
Jan,09 2020 BIRDS OF PREY - Official Trailer 2
Jan,09 2020 Samsung's T7 Touch Portable 2TB SSD has fingerprint scanner
Jan,08 2020 Europe's Strongest Man 2019
Jan,08 2020 Locke & Key - Official Trailer
Jan,08 2020 Intel Xe DG1 discrete graphics demo
Jan,08 2020 NVIDIA Ends Quadro Driver Support for Windows 7 from Mid-January
Jan,08 2020 Iran: Boeing 737 with at least 170 on board crashes
Jan,07 2020 Google Assistant Gains New Speaking, Privacy Actions
Jan,07 2020 Bebe Rexha HOT Sexy Bikini Dance
Jan,07 2020 Ozzy Osbourne - Straight to Hell (Official Music Video)
Jan,07 2020 AMD Ryzen Threadripper 3990X Pricing
Jan,06 2020 New New Mutants Trailer
Jan,06 2020 NVIDIA GeForce v441.87 CES Game Ready Driver
Jan,06 2020 NVIDIA unveils a 360Hz 'world's fastest' esports monitor
Jan,05 2020 490+ kilometers per hour - Bugatti Chiron
Jan,04 2020 Wi-Fi 6 may soon expand into the 6GHz spectrum, to be called Wi-Fi
Jan,03 2020 Galaxy S10 Lite and Note10 Lite Carve Out New Space in Samsung's
Jan,03 2020 AMD Stock Peaked at $49.10 per Share
Jan,03 2020 NVIDIA's Next-Generation Ampere GPUs to be 50% Faster than Turing
Jan,02 2020 What If Earth Was Hit By A Grain Of Sand Going Light of Speed
>> News Archive <<

TechAmok - Privacy Policy        loading time:0.01secs