Android Users’ Private Data can be Hacked [ALERT]

android hackedDo you own an Android handset? If yes, you could be one among those 99% people whose private data can be accessed. This personal data leakage problem in android handsets has been found out by researchers at the University of Ulm, in Germany who found out that devices running on an Android version prior to 2.3.3 can be easily hacked because of the weak Client Login Authentication Protocol.

Whenever you login to a social network like Facebook or Twitter your authentication data, that is your username/password and password are stored as an authentication token which is used in future for logging in. This data is stored for 14 days and can be easily accessed by the hackers.

How is it done?

The hacker can set up a wifi access point with a common SSID (evil twin) of an unencrypted wireless network, e.g., T-Mobile, attwifi, starbucks. When your Android device tries to automatically connect to the unencrypted Wi-Fi network, the Client Login Authentication token is accessed by the hacker and hence your privacy is no longer private.

How to Protect yourself?

  • Turn off automatic Wi-Fi connection
  • Use 3G or 4G networks rather than Wi-Fi
  • If you do not have a 3G or 4G enabled device then you can use an app called SSH Tunnel which creates a secure connection between your device and the network.
  • Use Secure connection (https:) to access the social networks.

I do hope Google fixes this problem soon. But would you prefer buying an Android device again?

  • http://techgyo.com Sreejesh @techgyo

    Thats something Andriod users have to worry about.

  • http://www.auto-power-girl.com Carla

    That looks serious. Android users should worry about and to be careful.

  • vikas

    But what if Wi-Fi is not enabled on my Android mobile :)
    it’s samsung galaxy 5?

    • http://www.blogotechblog.com Lalit Indoria

      You don’t need to worry if Wi-Fi is not enabled Vikas!

    • vikas

      So, I don’t need to worry because I don’t have Wi-Fi zones near my home :)

  • http://www.tradetechsports.com Travis@TradeTechSports

    Nice heads up. I hate how easy it is for all the social networks to be hacked, makes you feel like you can’t do anything online without being hacked.

  • http://www.77fo.com Billy Christopher

    Your blog was very informative. But if you’re looking to purchase an IPAD or Android Tablet, depending on what you are after, some research needs to be done so you are not paying too much – the android can be more than 1/2 the price of an IPAD and with the Android being a wholly owned subsidiary of Google, Android apps are likely to overtake IPAD apps in popularity and numbers!
    Android

    • http://www.blogotechblog.com Lalit Indoria

      I agree Billy but quality is something that matters.. Though Android surpasses iOS apps, the quality of iOS apps is always better. But I appreciate your point of view :)

  • http://humortechblog.com/ Sahl @HumorTechblog

    Oh this is bad, An Android user here!

    thanks for the share

  • http://deboltinteractive.com Olivia Williams

    Ohhh my! I have own an android. Just bought it a few weeks ago. Are you really serious about that information? I’m worried now. :(

    • http://www.blogotechblog.com Lalit Indoria

      I have mentioned some precautionary measures too Olivia. Hope you find it useful :)

  • Marcellus Clar

    Hey, really. Wow I was surprised, Is it possible not to be hacked.. 14 days stored? can it be deleted in the storage right after?