• Latest
  • All
  • How To
pocket lint zimperium

Stagefright: The Android Security Exploit Exposing Smartphone Users

May 3, 2022
Cyber attacks on insurance companies

Kenyan Insurance Companies Ordered to Report Cyber Attacks Within 24 Hours

July 12, 2025
Linkless phishing scams

Linkless Scams Are the New Phishing, Experts Warn

July 12, 2025
Android 16

Android 16 Will Clean Up Your Notifications with Smart AI Grouping

July 12, 2025
Android Canary release channel

Early Access Android Builds Arrive with Google’s Canary Channel

July 12, 2025
DHgate Tablet Cases deals
Japan Internet Speed

Japan Records World’s Fastest Internet Speed at 1.02 Petabits Per Second

July 12, 2025
Bitchat

Jack Dorsey Launches Bitchat, a Bluetooth-Only Messaging App

July 10, 2025
YouTube AI slop is getting demonetized

YouTube Declares War on Low-Effort AI Videos via Demonetization

July 10, 2025
Why Can'y You Register a Safaricom SIM Card After 7 PM

Why You Cannot Register a Safaricom SIM Card After 7 PM

July 10, 2025
Former Safaricom Chief Enterprise Business Officer, Cynthia Karuri-Kropac

Frankline Okata Takes Over as Cynthia Karuri-Kropac Exits Safaricom PLC

July 10, 2025
AI

OpenAI and Perplexity Launch Browsers to Rival Google Chrome

July 10, 2025
Vivo-Y29-4G

Vivo Y29 Launches in Kenya at KES 23,999

July 10, 2025
galaxy z fold7-galaxy z flip7-samsung

Samsung Unveils Galaxy Z Fold7 and Z Flip7 with Bigger Screens

July 10, 2025
Techweez | Tech News, Reviews, Deals, Tips and How To
  • News
  • Entertainment
  • Reviews
  • Features
  • Editorial
No Result
View All Result
Techweez | Tech News, Reviews, Deals, Tips and How To
  • News
  • Entertainment
  • Reviews
  • Features
  • Editorial
No Result
View All Result
Techweez | Tech News, Reviews, Deals, Tips and How To
No Result
View All Result

Stagefright: The Android Security Exploit Exposing Smartphone Users

Bonny Gwendo by Bonny Gwendo
May 3, 2022
in News
Reading Time: 2 mins read
264
0
pocket lint zimperium

The security company Zimperium made an announcement in July 2015 about finding a vulnerability in the Android operating system that had android users all over the world questioning how secure their android devices were. Stagefright is a potential security exploit that lives inside the android operating system. The attack is made through the libStageFright mechanism which helps all android devices process video files sent via MMS. Many messaging apps process the video automatically without any scanning and thus increased risk since the attacks could happen without the user’s potential knowledge of any existing threats. This could mean hundreds of thousands of attacks on android devices since the libStageFright mechanism dates back to android 2.2.

Google however addressed the problem, saying that at least 90 percent of the android devices have the ASLR (Address Space Layout Randomization) enabled technology that protects android users from the issue at hand. The ASLR method keeps the attacker from finding the function they want to exploit by randomly arranging the memory address space of any process, there is a 100/1 chance that your phone will be infected by a Stagefright virus so at least the odds are in your side. According to Google, anyone using Android 4.0 and above are safe from the attacks as ASLR was added to the Android version 4.0 and the following versions.

Zimperium however announced that a second round of Stage fright exploits  have been released. This round was not covered by the first patch released by Google to counter the attacks. The only difference between the first Stagefright and the second one is the attack vector. Whereas Stagefright 1.0 triggered the processing of the malicious video files via MMS messages, the new issue targets android devices through web pages that host the malicious media files. The effect of these attacks is that the attacker can run codes on the user’s device via the Stagefright library.

Stagefright 2.0 involves two system components, one of them being the libStageFright. It involves the libStageFright component making a call to libutils, a library that is the centre of the exploit. The call exposes the vulnerability in the device that makes the attacks possible. Stagefright 2.0 is however only dangerous on the Android 5.0 versions and higher since it is still technically in its current form.

There are already plans in place by Google to dispatch developed Stagefright patches. The company also claimed to update its Messenger and Hangouts apps so that they did not automatically process any video files received in the background to avoid passing the media to the media server process. There is however no need for panic as there is no existing evidence that the discovered vulnerability has ever been used.

Tags: Android
SendShare146Tweet92
Bonny Gwendo

Bonny Gwendo

Related Posts

Android 16

Android 16 Will Clean Up Your Notifications with Smart AI Grouping

July 12, 2025
Android Canary release channel

Early Access Android Builds Arrive with Google’s Canary Channel

July 12, 2025
Open TV

Open TV Brings Fast and Ad-Free IPTV to Android

July 7, 2025
How to Install a VPN and the Best Options in Kenya

How to Install a VPN and the Best Options in Kenya

June 27, 2025
How to Secure Your Phone and Yourself During Protests

How to Secure Your Phone (and Yourself) During Protests

June 25, 2025
Android 16

Google Releases Android 16 Early with Powerful New Tools

June 11, 2025

Latest

Cyber attacks on insurance companies

Kenyan Insurance Companies Ordered to Report Cyber Attacks Within 24 Hours

July 12, 2025
Linkless phishing scams

Linkless Scams Are the New Phishing, Experts Warn

July 12, 2025
Android 16

Android 16 Will Clean Up Your Notifications with Smart AI Grouping

July 12, 2025
Android Canary release channel

Early Access Android Builds Arrive with Google’s Canary Channel

July 12, 2025
Japan Internet Speed

Japan Records World’s Fastest Internet Speed at 1.02 Petabits Per Second

July 12, 2025
Bitchat

Jack Dorsey Launches Bitchat, a Bluetooth-Only Messaging App

July 10, 2025

Best devices

budget smartwatches 2025

Best Budget Smartwatches To Buy in Kenya 2025

February 13, 2025

Best Infinix Smartphones To Buy in Kenya 2024

February 13, 2025

Best Laptops for Battery Life in 2024

August 21, 2024

Best “Battery Warrior” Smartphones To Buy in 2024

August 22, 2024

Kenyan Insurance Companies Ordered to Report Cyber Attacks Within 24 Hours

July 12, 2025

Linkless Scams Are the New Phishing, Experts Warn

July 12, 2025

Techweez is a fast growing influential source of technology news, reviews and analysis by leading tech geeks in the industry.

Follow Us

Editorials

Abductions and Arrests! Kenyan Government’s Fear and Hate of X Users Makes No Sense

Actors and Film Crews Are Worried About Veo 3 Taking Their Jobs

Samsung QLED TVs Now Officially Certified for Real Quantum Dot Technology

Trump’s Tariffs Will Be the End of Affordable Tech

5 Ways to Prep Your Tech for Resale

The Weaponization of PDFs: How Cybercriminals Are Exploiting a Trusted Format

More News

YouTube Declares War on Low-Effort AI Videos via Demonetization

Why You Cannot Register a Safaricom SIM Card After 7 PM

Frankline Okata Takes Over as Cynthia Karuri-Kropac Exits Safaricom PLC

OpenAI and Perplexity Launch Browsers to Rival Google Chrome

Vivo Y29 Launches in Kenya at KES 23,999

Samsung Unveils Galaxy Z Fold7 and Z Flip7 with Bigger Screens

  • Terms Of Use
  • Techweez Brand
  • Privacy & Policy
  • Contact Us

© 2024 Techweez - Palahala Media Group may earn a commission when you buy through links on our sites.
A Palahala Media Group Brand. All rights reserved.
.

Welcome Back!

Login to your account below

Forgotten Password?

Retrieve your password

Please enter your username or email address to reset your password.

Log In

Add New Playlist

Techweez | Tech News, Reviews, Deals, Tips and How To
Crunchy Cookies 🍪 Ahead!

Hey there! Just a heads-up: we're big fans of cookies - both the digital and edible kind! 🍪 We use our cookies and some from third parties to ensure your browsing experience on our site is smooth sailing and secure.

 

But wait, there's more! We also use cookies to gather stats and insights on how you navigate our site. It's like getting a behind-the-scenes peek at your digital adventures!

 

Don't worry, you're in control. You can adjust your cookie settings anytime to suit your preferences. Feeling curious? Dive into our Privacy Policy for all the juicy details. Happy browsing! 🚀

Functional Always active
Listen, this legal stuff is about as exciting as watching paint dry. But it basically says we only use your stuff for what you asked us to do, and nobody else gets to peek!
Preferences
The technical storage or access is necessary for the legitimate purpose of storing preferences that are not requested by the subscriber or user.
Statistics
It's those sneaky cookie crumbs websites leave behind to count visitors, like counting ants at a picnic! Totally harmless, just for fun facts. The technical storage or access that is used exclusively for anonymous statistical purposes. Without a subpoena, voluntary compliance on the part of your Internet Service Provider, or additional records from a third party, information stored or retrieved for this purpose alone cannot usually be used to identify you.
Marketing
Hey there! Just letting you know we use some fancy gizmos to remember your preferences. This way, we can show you ads that are, well, not completely bananas.
Manage options Manage services Manage {vendor_count} vendors Read more about these purposes
Make cookies
{title} {title} {title}
Techweez | Tech News, Reviews, Deals, Tips and How To
Crunchy Cookies 🍪 Ahead!
To provide the best experiences, we use technologies like cookies to store and/or access device information. Consenting to these technologies will allow us to process data such as browsing behavior or unique IDs on this site. Not consenting or withdrawing consent, may adversely affect certain features and functions.
Functional Always active
Listen, this legal stuff is about as exciting as watching paint dry. But it basically says we only use your stuff for what you asked us to do, and nobody else gets to peek!
Preferences
The technical storage or access is necessary for the legitimate purpose of storing preferences that are not requested by the subscriber or user.
Statistics
It's those sneaky cookie crumbs websites leave behind to count visitors, like counting ants at a picnic! Totally harmless, just for fun facts. The technical storage or access that is used exclusively for anonymous statistical purposes. Without a subpoena, voluntary compliance on the part of your Internet Service Provider, or additional records from a third party, information stored or retrieved for this purpose alone cannot usually be used to identify you.
Marketing
Hey there! Just letting you know we use some fancy gizmos to remember your preferences. This way, we can show you ads that are, well, not completely bananas.
Manage options Manage services Manage {vendor_count} vendors Read more about these purposes
Make cookies
{title} {title} {title}
No Result
View All Result
  • News
  • Reviews
  • Features
  • Editorial
  • Automotive
  • Entertainment

© 2024 Techweez - Palahala Media Group may earn a commission when you buy through links on our sites.
A Palahala Media Group Brand. All rights reserved.
.