News: Linux Kernel Exploits Aren't Really an Android Problem
It seems like a new, dangerous Android exploit is uncovered every month or two. The latest headliners are NightMonkey and Chronos from the list of CIA hacks reported by Wikileaks, which have been billed as gaping security holes in the world's biggest mobile operating system.The thing is, to the average user, these exploits are generally more helpful than harmful. So why do news sites report them with such a doom-and-gloom tone?Well, a balanced perspective is nice, but fear gets clicks. Tech bloggers know this, so they look for the scariest angle when it comes to Android exploits—even though these same exploits can be used for good things like giving users root access in a single tap.Don't Miss: Privacy 101: Using Android Without Compromising Security
Where the Perception OriginatesAndroid is a Linux-based platform, so it shares most of its underlying code with the desktop operating system. In the instance of Dirty COW, Towelroot, and several others from recent years, these hacks originated as Linux kernel exploits.Once they've been translated to work on Android, most kernel exploits work roughly the same way: They run some code to escalate privileges and ultimately root the device. If you've ever struggled with a device that had no easy root method available to it, this might sound like a godsend.But unlike Android, Linux allows users to gain root access by simply asking for it. This means that kernel exploits originating from Linux hackers weren't initially intended as a root method. Instead, their creators had more malicious motivations. Most of these types of hacks were envisioned as a way for an outside threat to gain root access on Linux without the end user knowing about it, which would then allow them to inject malicious code or steal existing data.This is why the narrative is usually fear-based when these exploits are reported. Indeed, they started off as a malicious hack, so calling something like Dirty COW the "most serious Linux escalation bug ever" isn't factually inaccurate—but it's still fear-mongering when it's being reported as an Android problem.Don't Miss: How to Tell if Your Android Has Been Hacked (& What You Can Do About It)
Why Kernel Exploits Are More Often Helpful Than HarmfulThe vast majority of Linux kernel exploits that were ported to work on Android came in the form of a simple app. With Towelroot, Dirty COW, and even Gooligan, this meant that an app needed to be installed before any hacking could be done.Google screens apps for any Linux kernel exploit code, and if it's present, the app will be rejected from the Google Play Store. So for the average user who only installs apps from the official app store for Android, Linux kernel exploits are not a concern at all.Well let's say the user somehow downloaded one of these apps from a third-party source such as an outside app store or even a link in a phishing email. They'd still have to ignore the warning message in their browser that told them how "This type of file can harm your device." Even then, Android would block installation, as the "Unknown sources" setting is toggled off by default.But sure, let's take it a step further, why not. Say the user enabled the "Unknown sources" setting to allow for installation of third-party apps. In countries like China where the Google Play Store is unavailable, this is something many users have to do to install apps in the first place.In most cases, Android's built-in malware scanner would prevent the app from being installed. This malware scanner is updated regularly, so it's pretty quick to block all of the latest malware apps. Generally, the only way to get around this one would be if the user turned on Airplane Mode after they downloaded the app, but before they installed it.Don't Miss: 13 Tips for Keeping Your Android Device SecureBottom line, the user has to jump through several hoops to even get one of these apps installed on their phone, and it's extremely unlikely that this would happen accidentally. If you were a hacker looking to steal data and do generally-shady things with a kernel exploit on Android, this fact makes it an entirely unrealistic approach.The only reason that Gooligan was able to do some damage with the kernel exploit approach was that Android's built-in malware scanner is not present on devices running 4.1 or lower. But that's only 5.7% of the world's Android devices, and even then, the user had to willfully modify settings and ignore warnings to be affected. At that point, a hacker would probably have a higher rate of success if they just asked people for their Google password and hoped that their victims didn't know any better than to give it to them.On the other hand, if you were an end-user who just wanted to root your phone without using a computer, one of these kernel exploits could be used to make the process incredibly easy. You could tweak the settings I just mentioned, install an app with the kernel exploit embedded into it, then tap a button to get Superuser access.When you were done there, you could re-enable all of Android's security settings, uninstall the app, then get a root management app like SuperSU to ensure that no other apps would get access to your device's internal file system unless you explicitly granted permission.So the next time you see one of these big scary kernel exploits generating headlines, keep in mind that it will likely never be used in a real-world attack here in the states. And while you're reading one of these fire-and-brimstone articles, try to remember the name of the exploit—because it might just be how you end up rooting your next device.Don't Miss: How to Root Over 300 Devices Using CF Auto RootFollow Gadget Hacks on Facebook, Twitter, Google+, and YouTube Follow Android Hacks on Facebook, Twitter, and Pinterest Follow WonderHowTo on Facebook, Twitter, Pinterest, and Google+
Cover photo by Dallas Thomas/Gadget Hacks
You can just restore to stock ROM of Huawei Nexus 6P, How to unbrick Nexus 6P. The steps are pretty simple, if you follow everything properly, we can guarantee you that you will end up safely with a powerful Nexus 6P. So once you are prepared with the above stuffs, its time to find the best Custom ROM for Huawei Nexus 6P.
Restore Nexus 5 to Stock and Flash Factory Images (Win/ Mac
Best Custom ROM for HTC One M8. Here is the list of Best Custom ROM for HTC One M8. To Install Any Custom ROM for HTC One M8, you need TWRP Recovery on your device. Once you have installed TWRP, you can easily start installing Custom ROM or any mods on your HTC One M8 device. Here is the guide to Install TWRP Recovery on HTC One M8.
How To: Secretly Save Snapchat Photos on Your Samsung Galaxy Note 2 Without Notifying the Sender How To: Get the New Jelly Bean 4.3 Camera & Gallery Apps on Your Samsung Galaxy Note 2 (No Root Required) How To: Save Instagram Photos Without Posting Them (And Stack Filters for the Perfect Pic)
How do I set my photos and videos to always save to SD card
In this clip, you'll learn how to prepare and format a USB thumb drive for use with an Apple iPad. Whether you're the proud owner of an Apple iPad or perhaps just considering picking one up, you're sure to benefit from this free video tutorial.
how can i use a flash drive with my ipad … - Apple Community
Google Pixel and Pixel XL phone problems: All you the fixes, hacks, workarounds and tricks you need to overcome some of the Google Pixel phone's biggest problems, bugs, and annoyances.
Google Pixel 3a review: the mid-range phone that can replace
Atomic Clock won't set itself ? Am I doing something wrong ? Clock starts rotating as if to set the time, then stops at a random time. Atomic Clock won't set
How do I reset my atomic clock? - JustAnswer
Have you ever wanted to change the status bar on your Android phone or tablet? Maybe you wanted to change the position of the clock, add a battery percentage, or just get a different look. Whatever your reason, there's a simple way to customize your status bar-and it doesn't even require root access.
Get Lollipop-Style Status Bar Icons on Android Jelly Bean or
tablet discontinued
1-48 of 58 results for "hp tablet discontinued" HP TouchPad Wi-Fi 32 GB 9.7-Inch Tablet Computer Office All-In-One Inkjet Printer with Mobile and Tablet
HP Touchpad tablet discontinued, goes on sale for $99 and
Perhaps the title might have shocked some of you, but it appears that a study suggests no less than 70% of Android users prefer to have pre-installed apps on their devices.
The Best News Apps for Android and iOS | Digital Trends
How to wake up your Android phone without the power button. If your power button stops working, never let your phone shutdown completely since you won't be able to turn it on again in most cases. If your phone wasn't shut down or you managed to turn it on somehow, here are some ways you can unlock or wake up your phone every time. 1.
Android Power button not working? Ways to turn screen on/off
News: Google Unleashes the Powers of Childish Gambino aka Donald Glover in AR via New Pixel Playmoji How To: How Google's Titan M Chip Makes the Pixel 3 One of Most Secure Android Phones News: Google Pixel Reviews Are Out—Here's What People Are Saying
Google's ARCore Will Do for Android Hardware What Apple's
0 comments:
Post a Comment