{"id":41311,"date":"2014-08-23T06:51:36","date_gmt":"2014-08-23T06:51:36","guid":{"rendered":"http:\/\/4cd.e16.myftpupload.com\/?p=41311"},"modified":"2014-08-23T06:51:36","modified_gmt":"2014-08-23T06:51:36","slug":"gmail-smartphone-app-hacked-by-researchers","status":"publish","type":"post","link":"https:\/\/citifmonline.com\/?p=41311","title":{"rendered":"Gmail smartphone app hacked by researchers"},"content":{"rendered":"<p id=\"story_continues_1\">US researchers say they have been able to hack into Gmail accounts with a 92% success rate by exploiting a weakness in smartphone memory.<\/p>\n<p>The researchers were able to gain access to a number of apps, including Gmail, by disguising malicious software as another downloaded app.<\/p>\n<p>Gmail was among the easiest to access from the popular apps tested.<\/p>\n<p>The hack was tested on an Android phone, but the researchers believe it could work on other operating systems.<\/p>\n<p>A Google spokeswoman said the technology giant welcomed the research. &#8220;Third-party research is one of the ways Android is made stronger and more secure,&#8221; she said.<\/p>\n<p><a href=\"http:\/\/www.cs.ucr.edu\/~zhiyunq\/pub\/sec14_android_activity_inference.pdf\">The research<\/a>\u00a0is being presented later at a cybersecurity conference in San Diego by academics from the universities of Michigan and California.<\/p>\n<p>Other apps hacked included H&amp;R Block, Newegg, WebMD, Chase Bank, Hotels.com and Amazon.<\/p>\n<p><strong>Passwords stolen<\/strong><\/p>\n<p>The Amazon app was the hardest to access, with a 48% success rate.<\/p>\n<p>The hack involves accessing the shared memory of a user&#8217;s smartphone using malicious software disguised as an apparently harmless app, such as wallpaper.<\/p>\n<p>This shared memory is used by all apps, and by analysing its use the researchers were able to tell when a user was logging into apps such as Gmail, giving them the opportunity to steal login details and passwords.<\/p>\n<p>&#8220;The assumption has always been that these apps can&#8217;t interfere with each other easily,&#8221; said Zhiyun Qian, an assistant professor at the University of California and one of the researchers involved in the study.<\/p>\n<p>&#8220;We show that assumption is not correct, and one app can in fact significantly impact another and result in harmful consequences for the user.&#8221;<\/p>\n<p>In another example the researchers were able to take advantage of a feature of the Chase Bank app which allows customers to pay in cheques by taking pictures of them with their device&#8217;s camera.<\/p>\n<p>The researchers were able to access the camera to steal the pictures as they were being taken, giving them access to personal information including signatures and bank details.<\/p>\n<p>The tests were carried out on Android phones, but the researchers believe the attacks could be successful on other operating systems, including Windows and the iOS system developed by Apple.<\/p>\n<p>&nbsp;<\/p>\n<p>&nbsp;<\/p>\n<p>Source: BBC<\/p>\n","protected":false},"excerpt":{"rendered":"<p>US researchers say they have been able to hack into Gmail accounts with a 92% success rate by exploiting a weakness in smartphone memory. The researchers were able to gain access to a number of apps, including Gmail, by disguising malicious software as another downloaded app. Gmail was among the easiest to access from the [&hellip;]<\/p>\n","protected":false},"author":5,"featured_media":41312,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"jnews-multi-image_gallery":[],"jnews_single_post":[],"jnews_primary_category":[],"jnews_social_meta":[],"jnews_override_counter":[],"footnotes":""},"categories":[],"tags":[18],"class_list":["post-41311","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","tag-dr-akwasi-osei"],"_links":{"self":[{"href":"https:\/\/citifmonline.com\/index.php?rest_route=\/wp\/v2\/posts\/41311","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/citifmonline.com\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/citifmonline.com\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/citifmonline.com\/index.php?rest_route=\/wp\/v2\/users\/5"}],"replies":[{"embeddable":true,"href":"https:\/\/citifmonline.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=41311"}],"version-history":[{"count":0,"href":"https:\/\/citifmonline.com\/index.php?rest_route=\/wp\/v2\/posts\/41311\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/citifmonline.com\/index.php?rest_route=\/wp\/v2\/media\/41312"}],"wp:attachment":[{"href":"https:\/\/citifmonline.com\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=41311"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/citifmonline.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=41311"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/citifmonline.com\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=41311"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}