Man-in-the

New security issue in sight for Android phones. In this case it is an attack that comes under the name of Man-in-the-Disk. It takes advantage of the use that some applications make of external storage to gain access to the device's microSD card. Thus, it allows you to install applications without the user's consent.

Man-in-the-Disk: The attack that affects the microSD of Android phones

These are also malicious applications that are installed on the user's device. Either lock the phone or cause some legitimate apps to be unable to function normally on the device.

New security problem on Android

The main problem users with Man-in-the-Disk face is that on Android there are no built-in protections for the data that is stored on the microSD. So they are left unprotected, being vulnerable to attacks like the one that is happening today. Although Google publishes some guidelines, the company's own applications put the microSD card at risk.

While it seems that this Man-in-the-Disk attack is being a wake-up call for many developers on Android. Since they work on solutions to prevent these risks from happening. So all applications that do not follow these security guidelines can cause problems for the user.

So Check Point security researchers (who discovered the attack) recommend that Google implement built-in protections for microSD card data. It is not known if the company will carry it out, but seeing the problems with this attack, it may come.

The Hacker News Font