"The way Viber handles to popup its messages on smartphones' lock screen is unusual, resulting in its failure to control programming logic, causing the flaw to appear."īkav, which posted a blog about the flaw on Tuesday, says it told Viber about the flaw last week but hasn’t yet gotten a response. Nguyen Minh Duc, Director of Bkav’s Security Division, says the security hole comes out of the weird way in which Viber handles messages: The exploit entails a few actions on Viber’s new-message popups, combined with a few other tricks to gain full access to the phone. The exploit steps are shown in four videos (one for each handset) on the company’s site.
Viber, which boasts over 175 million worldwide users and by its own account is growing crazy fast, is a smartphone app for Android, iPhone, Blackberry, Windows Phone and other devices and platforms that lets users call, text, and send photos for free.Īs Softpedia’s Eduard Kovacs reports, researchers at Bkav have identified a security hole in Viber that can be exploited to bypass Android smartphones’ lock screen and gain full access to the device.īkav describes the lockscreen bypass as “simple,” though the steps might slightly differ among different phones. Not that you should want to do any of that, mind you, but just to pile onto the spate of recently revealed smartphone hijacking methods, a new flaw in Viber allows hackers to more easily bypass Androids’ lock screens than these previous finger-twisters. Hampered by pesky morality that forces you to forego the placing of bogus emergency calls so as to hack iPhone passcodes? Lacking the lightning-fast reflexes needed to get past the Samsung Galaxy Note 2’s lock screen? You can find Viber’s Android knowledgebase and download instructions here. Update: Viber contacted us to say they’ve published a version that fixes this flaw.
0 kommentar(er)
