This notice is from the archives of The Notice Board. Information contained in this notice was accurate at the time of publication but may no longer be so.
What is this notice about?
Android phones have recently had an issue exposed which could allow an attacker to gain control over a user’s mobile android device. This vulnerability is known as StageFright.
Who was affected and how?
Users who own Android devices should temporarily disable the automatic downloading of MMS (pictures, video, and music) text messages from their devices until their device manufacturer releases a fix for the bug. This will help reduce the possibility of exploitation on their devices. Typically when a device is compromised, the contacts on that phone are also targeted by the attacker, and users could receive a message that appears to be from a trusted associate, and never know their phone is being compromised.
Why is this important?
In order to prevent the possible abuse of the information contained on your phone, care must be taken:
• Do not open messages from people you don’t know
• Do not open multimedia files from friends and contacts unless you are expecting them.
Disabling the automatic retrieval of multimedia messages will protect you from unknown attackers, but is not a foolproof solution if your contacts have already been compromised.
How do I disable the automatic downloading of MMS text messages?
A blog article from IT services has recently been published that provides instructions on how to disable this feature and provides more details on the vulnerability. You can access the blog at: http://blogs.ulethbridge.ca/it-services/2015/07/29/android-phones-and-th...
For assistance:
If you require additional information or have any concerns, please contact the ITS Solutions Centre.
Contact:
help | help@uleth.ca | 403-329-2490 | uleth.ca/information-technology
