ZDNet: On the whole, mobile operating systems seem to be pretty secure, but new bugs uncovered in Google’s mobile platform shows how every Android-powered device – more than a billion devices in all – are vulnerable to malware thanks to privilege escalation issues.
Researchers from Indiana University and Microsoft published a paper that describes a new class of Android vulnerabilities called Pileup flaws. Pileup, which is short forprivilege escalation through updating, increases the permissions offered to malicious apps once Android is updated, without informing the user.