At least that’s what two security researchers from Trustwave say. Of course this is theoretical, but they have “Developed a kernel-level Android rootkit in the form of a loadable kernel module” Once the rootkit was running on the actual phone, the attacker could call using a “trigger number” which would allow them “full root access on the Android device” via TCP.
Naturally, this is only a proof of concept and hasn’t actually been seen “in the wild”. However, the researchers are planning to do a live demo of this exploit at next month’s Def Con conference.
Comments