Security researchers warn of a high-severity Android flaw that stems from what they call a toast attack overlay vulnerability. Affected are all versions of the Android operating system prior to Android 8.0, Oreo, released just last month. Researchers say criminals could use the Android s toast notification, a feature that provides simple feedback about an operation in a small pop up, in an attack scenario to obtain admin rights on targeted phones and take complete control of them. A patch for the vulnerability was released Tuesday as part of Google’s September Android Security Bulletin.
Source: https://threatpost.com/android-users-vulnerable-to-high-severity-overlay-attacks/127901/