Warning for 2million Android owners – someone may be logging everything you type

DANGEROUS Android bugs could let hackers keep a record of everything you type, cyber-experts warn.

Three apps are said to be affected, with a combined total of more than two million downloads.

Be careful when downloading apps that haven't been updated in a while – they may have unfixed security flaws

Be careful when downloading apps that haven’t been updated in a while – they may have unfixed security flawsKrediet: Google

All three are keyboard and mouse programme that let you control a desktop or laptop computer using your Android foon.

The apps transmit your mouse and keyboard inputs to a server to do this.

Cyber-experts at Synopsys say the apps themselves are legitimate and not scams – but reportedly contain dangerous security holes that could let hackers spy on you.

An exploit of the authentication and authorization vulnerabilities could allow remote unauthenticated attackers to execute arbitrary commands,” said SynopsysMohammed Alshehri, a security researcher who discovered the issue.

“Net so, an exploit of the insecure communication vulnerability exposes the user’s keystrokes, including sensitive information such as usernames and passwords.

The actual apps and versions affected are as follows:

  • Telepad versions 1.0.7 and prior
  • PC Keyboard versions 30 and prior
  • Lazy Mouse versions 2.0.1 and prior

If you have any of these apps installed, it may be worth uninstalling them as soon as possible.

Here is a simple guide on how to delete Android apps.

The exploits could allow hackers to read everything you’re typing.

But it could also let them execute code on your computer, potentially seizing control of your device.

It’s currently unclear if any hackers have exploited the bug.

The Synopsys Cybersecurity Research Center (CyRC) team reportedly disclosed the flaws to app makers on August 13 hierdie jaar, and claims to have followed up several times.

But ultimately the issue remains unfixed.

The CyRC reached out to the developers multiple times but has not received a response within the 90 day timeline dictated by our responsible disclosure policy.

These three applications are widely used but they are neither maintained nor supported, and evidently, security was not a factor when these applications were developed.

Now cyber-experts have published details of the bug in hopes of warning Android phone owners.

Consider using an alternative mouse and keyboard app for now: choose one with lots of downloads and positive reviews on the Google Play store that is regularly updated.

Beste foon- en gadget-wenke en -hacks

Op soek na wenke en hacks vir u foon? Wil u die geheime funksies in sosiale media-toepassings vind? Ons het u gedek…

Kry alles nuut WhatsApp, Instagram, Facebook and other tech gadget stories here.


Ons betaal vir u stories! Het u 'n verhaal vir The Sun Online Tech & Wetenskapspan? E-pos ons by tech@the-sun.co.uk