Vulnerabilities in the Broadcom system-on-a-chip that provides wifi for many Android devices mean that simply lighting up a malicious wifi access point can allow an attacker to compromise every vulnerable device in range, without the users having to take any action -- they don't have to try to connect to the malicious network.
Iphones are also vulnerable to the attack, but Apple issued a patch for them on Monday.
Android updates are only available for "select devices" and can be up to two weeks away, or longer, depending on your carrier.
Part of the problem is that Broadcom's security stinks, lacking "all basic exploit mitigations—including stack cookies, safe unlinking and access permission protection (by means of [a memory protection unit.])"
The proof-of-concept exploit developed by Project Zero researcher Gal Beniamini uses Wi-Fi frames that contain irregular values. The values, in turn, cause the firmware running on Broadcom's wireless system-on-chip to overflow its stack. By using the frames to target timers responsible for carrying out regularly occurring events such as performing scans for adjacent networks, Beniamini managed to overwrite specific regions of device memory with arbitrary shellcode. Beniamini's code does nothing more than write a benign value to a specific memory address. Attackers could obviously exploit the same series of flaws to surreptitiously execute malicious code on vulnerable devices within range of a rogue access point.
Android devices can be fatally hacked by malicious Wi-Fi networks
[Dan Goodin/Ars Technica]
(Image: Bill Ward, CC-BY)
KPMG is one of the "Big Four" accounting firms: that means that whenever a plan for a business or a public project has a box that says, "Make sure no one is cheating," it means that you hire KPMG or one of its rivals to come in and check the books and make sure that […]
A year ago, Trump FCC Chairman (and former Verizon exec) Ajit Pai killed Net Neutrality, leveraging illegal, fraudulent industry dirty tricks to ram his rule through the process; all along, he claimed that Net Neutrality was a drag on investment, competition and service improvements, and that Americans would see immediate benefits once he was done […]
The looming threat of mass-unemployment driven by automation has been grossly overstated: while it's true that "truck driver" is one of the most common jobs in America, the vast majority of truck drivers are not long-haul drivers, which are the drivers at risk of having their jobs automated out of existence.
So you cut the cord and got rid of cable? Join the steadily growing club. But while you’re out picking a streaming service, you might find one big blind spot: Local TV and sports, not to mention first-run programming from the big cable networks. Luckily, there’s a throwback way to get it for free: The […]
Even if you feel like AirPods are worth the price tag, you’ve got to admit there’s a certain anxiety that comes with using them. What if I lose them? What if they get wet in the rain? Or drenched in sweat? Or fall into the drink you dropped them into? Shiny tech is great, but […]
With the quick-fix appeal of video games and their own cell phones, it can be tough to keep kids focused on supposedly “educational” toys. And while it may seem counter-intuitive to fight tech with more tech, we’re all in when it comes to the Toybox 3D Printer. We’re not sure if anyone had envisioned a […]