Earlier this year, a security research had revealed that Android phones can be hacked using just a simple text. Now apparently, two new exploits have been revealed that could put potentially 1.4 billion users at risk.
These two bugs are also found in the media playback engine known as Stagefright just like the first bug. The new bugs will allow hackers to gain access to your smartphone by tricking you to visit a website containing malicious mp3 or mp4 files.
The bugs apparently affect almost every Android device that has been released since 2008 and the second bug even affects Android devices above 5.0 Lollipop that have received the patch for the first Stagefright fix.
The exploit can be triggered by downloading an mp4 or mp3 file or even just previewing the file. In the case that they are on the same network, the hacker can even inject the exploit code into the victims smartphone without him/her having to download or preview any content.
Google’s spokesperson stated that a fix for these bugs will be rolled out starting from October 5th onwards first with their Nexus devices. Other companies and smartphones will get the update shortly afterwards.