Researchers at Georgia Tech recently discovered an attack known as Cloak and Dagger. It gives cyberattackers the opportunity to undertake malicious control of an Android device without users noticing the errant activity. The attack abuses a pair of legitimate app permissions that are used across certain features on Androids. The user does not necessarily need to grant permission and is not even notified of a change in device behavior. The attacks affect all recent versions of Android, including 7.1.2, and researchers suggested the flaws are not yet fixed. Google said it already built new security protections into Android O that will strengthen protection in the future.”]
Source: https://securityintelligence.com/news/cloak-and-dagger-attack-creates-android-device-takeover-risk/