Results 1 to 2 of 2
Thread: Galaxy S4 - S6 keyboard exploit
06-18-2015, 08:15 PM #1
Galaxy S4 - S6 keyboard exploit
idk if any of you saw this or give a fuck, but i've got a few friends that i've shown this to,
and yes i'm one of those copy-link paste-link fucks. deal with it.
06-19-2015, 01:11 AM #2
It's a man-in-the-middle attack. Keyboard runs as admin, doesn't need approval to install the update package, no hash/key check or it can be faked. Lots of devices are at threat then, cause lots of stock keyboards use SwiftKey for the word prediction. Not a big threat unless you use free networks all the time or someone can do this on a mobile network like 3G/4G.
I have a Galaxy S4 Active with custom ROM, I'm safe. 8)
Though it's fun to find small stuff like this, been doing it on PS Vita to fake update logs and replace .pkg files used to install updates to install actual games (DRM free tho, still checks for keys with DRM content. Mostly demos).