Cloak & Dagger attack discovered by security experts from Georgia Institute of Technology. These attack just require two permission that, in the event that the application is installed from the Play Store, the client does not require to grant permission and even the users are not notified. These attacks incorporate progressed clickjacking, unconstrained keystroke recording, stealthy phishing, the quiet establishment of a God-mode application (with all authorizations permissions), and silent phone crack + arbitrary activities (while keeping the screen off)”]