This morning we are waking up to another security exploit, affecting a number of Android smartphones. And this time it has to do with the Google Chrome browser. Which affects every device with the latest version of Chrome installed. And with Chrome being pre-installed on every device (at least those sold outside of China and not running a forked version of Android) that’s a whole lot of affected devices. It is very easy to exploit a device with Chrome actually, all you need to do is open a website containing the malicious code, and the attacker will have full control of your phone. This includes being able to download apps, make phone calls, just about anything, without your interaction. Good thing here is that it’s not out in the wild yet. So you don’t need to be too concerned just yet.
While this does sound a bit scary, seeing as a simple link can give an attacker full access to your phone, remotely. It’s important to remember that you should only click or tap on links that you know are authentic. For instance, if you get an email from Dropbox, but the link doesn’t go to Dropbox, don’t click on it. There are simple measures to protect yourself, here. And with this exploit, they are more important than ever. As soon as we get a patch from Google for Chrome, we’ll be sure to let everyone know it’s available.