Run this Installer Hijacking Scanner app to see if your older Android phone is at risk

Half of all Android phones still run Android 4.2 or older; they could be vulnerable to hijacking app

This app could save your older Android phone from being hijacked. Specifically, the Installer Hijacking Scanner app from the Google Play store is designed to check for a vulnerability that was discovered over a year ago and still hasn't been resolved.

Palo Alto Networks revealed information Tuesday about a critical vulnerability affecting Android. The flaw was initially discovered in January, 2014. Palo Alto Networks has been working closely with Google and Android device manufacturers to resolve the issue since then. The flaw, dubbed "Android Installer Hijacking," is estimated to impact nearly half of all Android devices.

The vulnerability affects the Time-of-Check to Time-of-Use (TOCTTOU) function of Android. Exploiting the flaw allows an attacker to hijack app installation and replace or modify an otherwise benign Android app installation with malware without the user's knowledge. According to Palo Alto Networks the malicious app is able to gain full access to the compromised device--including usernames, passwords, and other sensitive data.

The issue is a problem only when downloading apps from third-party repositories. Apps installed from Google Play are downloaded to a protected space within the file system. Third-party app stores, on the other hand, typically download files to unprotected storage and installed directly from there. The TOCTTOU flaw enables an attacker to modify or replace the file during installation without alerting the user.

The issue is mainly a concern for users that install apps from third-party app stores on older Android devices. Palo Alto Networks claims that the flaw exists in Android 2.3, 4.0.3-4.0.4, 4.1.x, and 4.2.x. Some Android 4.3 implementations have also been found vulnerable.

One of the primary benefits of Android is also one of its biggest concerns. The volume and diversity of Android devices leaves many Android users stuck with outdated versions of the OS. Androd 4.4 KitKat was released in October of 2013 and has already been supplanted by Android 5.0 Lollipop yet less than 40 percent of Android users have received that update. Meanwhile, Google has stopped supporting Android 4.3 and earlier versions--leaving more than half of Android users to rely on the Android community to patch vulnerabilities or just fend for themselves.

At the time the vulnerability was discovered, it affected almost 90 percent of the Android devices in use. Thanks to attrition and updates to more current versions of Android, that number has dropped to just under 50 percent. The Android device doesn't need to be rooted to be vulnerable, but rooted devices are predictably more vulnerable, according to Palo Alto Networks.

Based on these facts, mitigation seems relatively simple. You should update your device to Android 4.3--or preferably 4.4--or later if at all possible. Regardless, you should stick to downloading apps from the official Google Play store.

Join the Good Gear Guide newsletter!

Error: Please check your email address.

Tags android malwaresecuritysmartphonesAndroidAccess control and authenticationdata protectionantiviruspalo alto networksconsumer electronicsmobile malwareGoogle

Our Back to Business guide highlights the best products for you to boost your productivity at home, on the road, at the office, or in the classroom.

Keep up with the latest tech news, reviews and previews by subscribing to the Good Gear Guide newsletter.

Tony Bradley

PC World (US online)
Show Comments

Essentials

Microsoft L5V-00027 Sculpt Ergonomic Keyboard Desktop

Learn more >

Lexar® JumpDrive® S57 USB 3.0 flash drive

Learn more >

Mobile

Lexar® JumpDrive® S45 USB 3.0 flash drive 

Learn more >

Exec

Lexar® Professional 1800x microSDHC™/microSDXC™ UHS-II cards 

Learn more >

Lexar® JumpDrive® C20c USB Type-C flash drive 

Learn more >

HD Pan/Tilt Wi-Fi Camera with Night Vision NC450

Learn more >

Audio-Technica ATH-ANC70 Noise Cancelling Headphones

Learn more >

Budget

Back To Business Guide

Click for more ›

Most Popular Reviews

Latest News Articles

Resources

PCW Evaluation Team

Azadeh Williams

HP OfficeJet Pro 8730

A smarter way to print for busy small business owners, combining speedy printing with scanning and copying, making it easier to produce high quality documents and images at a touch of a button.

Andrew Grant

HP OfficeJet Pro 8730

I've had a multifunction printer in the office going on 10 years now. It was a neat bit of kit back in the day -- print, copy, scan, fax -- when printing over WiFi felt a bit like magic. It’s seen better days though and an upgrade’s well overdue. This HP OfficeJet Pro 8730 looks like it ticks all the same boxes: print, copy, scan, and fax. (Really? Does anyone fax anything any more? I guess it's good to know the facility’s there, just in case.) Printing over WiFi is more-or- less standard these days.

Ed Dawson

HP OfficeJet Pro 8730

As a freelance writer who is always on the go, I like my technology to be both efficient and effective so I can do my job well. The HP OfficeJet Pro 8730 Inkjet Printer ticks all the boxes in terms of form factor, performance and user interface.

Michael Hargreaves

Windows 10 for Business / Dell XPS 13

I’d happily recommend this touchscreen laptop and Windows 10 as a great way to get serious work done at a desk or on the road.

Aysha Strobbe

Windows 10 / HP Spectre x360

Ultimately, I think the Windows 10 environment is excellent for me as it caters for so many different uses. The inclusion of the Xbox app is also great for when you need some downtime too!

Mark Escubio

Windows 10 / Lenovo Yoga 910

For me, the Xbox Play Anywhere is a great new feature as it allows you to play your current Xbox games with higher resolutions and better graphics without forking out extra cash for another copy. Although available titles are still scarce, but I’m sure it will grow in time.

Featured Content

Latest Jobs

Don’t have an account? Sign up here

Don't have an account? Sign up now

Forgot password?