Search This Blog

Friday, 13 November 2015

by Manish Singh , 13 November 2015 Share on FacebookTweetShareShareEmailReddit A critical vulnerability in Chrome for Android has been reported that makes it possible for attackers to take over a device. The vulnerability was demonstrated at the MobilePwn2Own, PacSec conference in Tokyo. The researcher believes that the vulnerability affects all versions of Android capable of running the latest version of Chrome. Qihoo 360 researcher Guang Gong showcased the exploit. The vulnerability resides in JavaScript v8, Google's open source JavaScript engine. For the vulnerability to be exploited, users needs to be tricked to visit a malicious website using Chrome Web browser. An attacker is then able to install an arbitrary application and gain the full privileges of the device. He noted that the attack was "one shot exploit," essentially meaning that just one vulnerability was enough to perform the attack. The exploit worked on many other devices as well, said Dragos Ruiu, the organiser of PacSec. "The impressive thing about Guang's exploit is that it was one shot; most people these days have to exploit several vulnerabilities to get privileged access and load software without interaction," Ruiu told Vulture South. "As soon as the phone accessed the website the JavaScript v8 vulnerability in Chrome was used to install an arbitrary application (in this case a BMX Bike game) without any user interaction to demonstrate complete control of the phone." Working details of the vulnerability haven't been disclosed, and Ruiu said that Google had been made aware of the vulnerability. At the same event, two security researchers managed to trick the Samsung Galaxy S6, Galaxy S6 Edge, and the Galaxy Note 4 to connect to a compromised base station and had the calls and messages go through it. As a result of which, a victim's calls and messages could be intercepted. Download the Gadgets 360 app for Android and iOS to stay up to date with the latest tech news, product reviews, and exclusive deals on the popular mobiles.


Xiaomi's new handset codenamed 'Gemini' has been spotted in a benchmark listing, tipping details about the innards of the rumoured smartphone. Additionally, the long-rumoured Mi Pad 2 as well as Redmi Note 2 Pro have been also spotted in listings.
Spotted at Geekbench browser benchmark, the rumoured Xiaomi 'Gemini' is said to be the codename for the company's next flagship, the Mi 5. One of the most notable features of the listing is it tips that the handset packs Qualcomm's recently unveiled Snapdragon 820 processor. Considering that Qualcomm has confirmed that smartphones featuring the new Snapdragon 820 processor will only be launched in early 2016, we can assume that Xiaomi's 'Gemini' will be revealed next year only.
A report from last week had also claimed that the Xiaomi's next Mi 5 flagship smartphone will pack Qualcomm's Snapdragon 820 SoC. The report however had suggested that Xiaomi may launch the smartphone on December 3 which now appears highly unlikely if it packs the Snapdragon 820 - unless launch and availability are widely seperated.
Other details tipped by the listing include Android 6.0 Marshmallow, 3GB of RAM, and a clock speed of up to 1.59GHz. The single-core score in Geekbench browser benchmark is 2,140 while multi-core score is 4,762.
In another Geekbench listing, Xiaomi's long-rumoured second Mi Pad tablet has been spotted. According to the listing, the Mi Pad 2 may feature a 2.24GHz quad-core Intel Atom x5-Z8500 processor clubbed with 2GB of RAM. Further, the listing claims the tablet runs Android 5.1 Lollipop.
Lastly, Xiaomi's Redmi Note 2 Pro, which was recently leaked in images, has been spotted in a Tenaalisting.
According to the Tenaa listing (via GizmoChina), the Xiaomi Redmi Note 2 Pro may feature Mediatek's MT6795 Helio X10 processor; a 5.5-inch full-HD display; 2GB of RAM; 16GB of inbuilt storage; a 13-megapixel rear camera, a 5-megapixel front camera, Android 5.0 Lollipop, and pack a 3060mAh battery. It also adds that the Redmi Note 2 Pro will measure 149.9x75.9x8.7mm and weigh 165 grams.
In-line with previous leak, the new leaked image spotted in Tenaa listing shows fingerprint scanner at the back panel. The Redmi Note 2 Pro is tipped to share the same specifications as the Redmi Note 2. The only difference would be an inclusion of a fingerprint sensor and a metal build.
Download the Gadgets 360 app for Android and iOS to stay up to date with the latest tech news, product reviews, and exclusive deals on the popular mobiles.

No comments: