Islamic State Telegram channel shares report on Android bug that allows malware to pose as real apps and steal user data
On May 27, 2020, a pro-Islamic State (ISIS) Telegram channel shared a report from technology news site TechChrunch, claiming that a new Android bug, known as StrandHogg 2.0, allows malware to pose as real apps and steal user data.
According to the report, the security vulnerability exist in almost every version of Android, and is nearly undetectable. It allows malware to trick users into entering their passwords, believing they are entering a legitimate app.
StrandHogg 2.0 can also hijack other app permissions and siphon sensitive user data, including photos, contacts, and real-time location.
Source: MEMRI