"Snit" <
use...@gallopinginsanity.com> wrote in message
news:CDB926DD.1AEDA%use...@gallopinginsanity.com...
> On 5/15/13 11:37 AM, in article kn0kiu$l6k$
1...@news.albasani.net, "Cola
> Zealot" <
Cola_...@fuckoff.com> wrote:
>
>> Oil can Harry wrote:
>>> Verily I say unto thee that Lusotec spake thusly:
>>>>
>>>> *136* new malware families and variants for Android in three months.
>>>
>>> Like every other example of sensationalist Android "malware" FUD, the
>>> article fails to clarify that this so-called "malware" is actually
>>> nothing more than social-engineering, every example of which requires
>>> the user to voluntarily and deliberately install and run it, and as
>>> such has precisely zero to do with software security.
>>>
>>> This is no more "malware" than persuading some gullible user to run:
>>> 'su -c "rm -fr /"'
Bullshit.
<quote>
It turns out that the "Dirty USSD" exploit demonstrated yesterday on Samsung
devices affects ***all Android devices*** running anything below Android
4.1.x aka Jelly Bean. During his presentation, Borgaonkar mentioned that the
same attack can be used to "kill" SIM cards.... ... vulnerable to remote
wipe or permanent destruction of the SIM card - if they haven't been updated
since June. He added that all Android devices running Android 2.3.x
(Gingerbread), 3.x (Honeycomb), 4.0.x (Ice Cream Sandwich) and 4.1.x (Jelly
Bean) are vulnerable to this flaw if they had not been updated since June.
Hole in Android kernel gives full read-write permissions to all physical
memory
The security hole resides in the Android kernel of Samsung handsets running
an Exynos 4210 or 4412 processor. While it creates a new and easier method
for end users to root their devices, it also gives installed apps full
read-write permissions to all physical memory. That, in turn, allows apps to
gain unfettered control of a handset, opening the door to malware with
rootkit-like capabilities. It also allows one app to monitor data processed
by a second app or the operating system.
<quote>
--
"I suggest (Linus) Torvalds cures whatever disease /he/ is suffering from,
before he loses what little is left of his credibility."
Homer - "Mr. Credibility" himself worried about the lack of credibility
Linus has left within the Linux community.
http://groups.google.com/group/comp.os.linux.advocacy/msg/9dd4f899cbc29f3e?hl=en