Credit: Credit: Maxwell Guberman, Georgia Tech
Carter Yagemann, a graduate research assistant in Georgia Tech’s School of Computer Science, checks permissions on an Android phone. Cybersecurity researchers have identified a new vulnerability affecting Android mobile devices that results not from a traditional bug, but from the malicious combination of two legitimate permissions that power desirable and commonly-used features in popular apps.