Google has released a patch for CVE-2020-0096, a critical escalation of privilege vulnerability in Android that allows attackers to hijack apps (tasks) on the victim’s device and steal data.
Dubbed StrandHogg 2.0 because its similar to the StrandHogg vulnerability exploited by hackers in late 2019, it affects all but the latest version of Android. The good news is, though, that there is no indication it is being actively used by attackers.
About StrandHogg 2.0 (CVE-2020-0096)
Like StrandHogg before it, CVE-2020-0096:
Doesn’t need the target device to be rooted and doesn’t require any specific permissions
Allows hackers to hijack nearly any app, i.e., to insert an overlay when the ap ..
Support the originator by clicking the read the rest link below.
