Complex Made Simple

Google fixes Android bug that allows apps to make rogue calls

Researchers from Germany-based security consultancy firm, Curesec have said a vulnerability present in most Android devices allows apps to initiate unauthorised phone calls, disrupt ongoing calls and execute special codes that can trigger other rogue actions, PC World has reported. The flaw was first introduced in Android version 4.1.x, also known as Jelly Bean, the researchers said. The vulnerability appears to have been fixed in Android 4.4.4, released on June 19. However, the latest version of Android is only available for a limited number of devices, and currently accounts for a very small percentage of Android installations worldwide, they added.