A high-severity vulnerability in Android’s “Toast” feature is putting users at risk of an overlay attack. The Toast vulnerability makes it easier for cybercriminals to launch an Android overlay attack, like the Cloak and Dagger exploit demonstrated earlier this year. The vulnerability can potentially affect hundreds of millions of devices, if not patched. Android users, however, can apply Google’s September 2017 Android Security Bulletin to patch the vulnerability, Palo Alto Networks advises. In the first quarter alone, 327 million Android smartphones were shipped worldwide.”]
Source: https://www.darkreading.com/application-security/new-android-toast-vuln-makes-overlay-attacks-easier