NFC-based Android hacks open up devices to remote takeover

Comments

  • Apple Sales Guy

    Don’t worry folks. Apple will ensure nfc on any apple device will be as secure as our bank vault

    😉

    • slinky

      what’s up android fanbois? not jerking it hard enough? c’mon fanbois..android is letting you down. jerk harder.

  • Dave

    Awwwwwkward

  • Lirodon

    And how many NFC-enabled Android phones are there?

  • wewewi

    Any door can be opened with the right tools.

    Does those security experts advises to stay home as long as your door isnt protected with a Bio and Retinal scan and a 512mbit Triple-AES encrypted keycard?

    Just turn NFC off, for Christ sake!

    • mmathieum

      NFC is disabled when the screen is locked.

      The number of NFC-enabled Android devices running Android 2.3 Gingerbread is ridiculously low.
      Even with these devices, it only works if you’re using the default Android Browser instead of Firefox, Opera, Dolphin Browser…

  • Me

    Ha ha

  • Matt

    I am a bit confused.

    “They created a text-message blocking application that uses a legitimate programming tool known as java script bridge. Java script bridge lets developers remotely add new features to a program without using the normal Android update process.”

    Meaning that the application already has to be loaded onto the phone?

    Even if the .apk file gets downloaded, it doesn’t auto execute. Even if it does, you have to agree to permissions. Of course, there could be an exploit that bypasses that, but turning NFC off still leaves you with the same exploit.

  • Alex Perrier

    Apple Sales Guy = Troll.

  • Brad Lawson

    Who the hell is going to let some d bag get close enough with a suspicious device for this to work. And what phones on gingerbread have NFC??

    • Matt

      Xperia S, Nexus S, uhhh. I think that’s it… (both of them are now on 4.x anyways)

  • Antoine N?

    Nope, my Galaxy Nexus still has browser as default even in Jelly Bean.

  • a4a6

    Blackberry!!!!!

  • Richard

    That’s the first time I’ve ever thumbs upped Alex Perrier.

  • Chris

    Why start caring about security now? Clearly having the latest and coolest games takes priority.

  • Jesse

    I’m surprised it’s taken this long to figure it out. I’d never enable NFC on my phone.

  • Brandon S

    i have still never encountered any malware or the likes on the market, just status bar ads. I think you really just need to know what you are downloading. As for NFC funtion, i really like the idea, but i stopped using it due to uselessness for now. has anybody ever incorporated NFC technolgy in watches, or other vital monitoring devices to trasfer quick info or is that not possible? Can you use it to send a video feed as to wirelessly connect to a monitor? i don’t know, i keep it off now. i need to sleep.

  • Slype

    I’ve been so so on NFC because I figured this kind of stuff would happen. That being said, kudos for being open, honest and quick to fix this issue. It’s tough being the innovator sometimes when you have to bear the brunt of the attacks. I remember Apple did it for a year or two back in 2006/2007 before they fell behind in technology. MobileMe was a mess out of the gate and since Apple was so closed, I had to use it (back in my naive tech days).

    Anyways, glad these issues are coming up now so they can bulletproof the tech. Once it’s fleshed out, Apple can then start using it and claim they invented it. Again.

  • sp

    like who really uses the stock android browser anyways?

    havent even clicked on that icon since i turned my SGS3 from day 1…

    dolphin browser >