Android Vulnerability Could Allow Screen Captures and Audio Recording

A vulnerability in the MediaProjection service on Android devices running Lollipop, Marshmallow, or Nougat – about 77.5 percent of all Android devices – could allow threat actors to take screen captures and record audio. Affected Android devices cannot detect partially obscured System UI pop-ups, potentially allowing a specially-crafted application to draw an overlay over the pop-up and grant elevated privileges, take screen captures, and record audio. If screen captures and audio recording occur, however, an icon will be displayed in the device’s notification bar. This vulnerability has been patched by Google in Android Oreo only.The NJCCIC recommends all users and administrators of Android devices review the reportby MWR Labs and ensure their devices are updated to the latest Android operating system, Oreo.

AdvisoryNJCCICGoogle, Android