http://l.yimg.com/bt/api/res/1.2/mWJSa95Isr8fwoyd5n.Csw--/YXBwaWQ9eW5ld3M7Zmk9ZmlsbDtoPTg2O3E9NzU7dz0xMzA-/http://media.zenfs.com/en_US/News/BGR_News/android-robot-frankenstein.jpg (http://news.yahoo.com/fake-id-security-flaw-could-greatest-threat-android-154006877.html)One Android feature that never made its way to iOS may be the cause of one of the most worrying security exploits ever on the mobile platform. AppleInsider reports that Bluebox Security has found an Android design flaw that-could potentially allow malware apps to take over someone’s device without requiring users to manually give the app permission-to access their phones. Dubbed ‘Fake ID,’ the flaw allows the malicious apps to send-fake credentials to Android, granting the app the ability to take on the form of another legitimate app that would have more extensive-access to the device. Perhaps unsurprisingly, one of the trusted apps that ‘Fake ID’ can assume the identity of is Adobe Flash, an Android-specific feature that-Steve Jobs refused



More... (http://news.yahoo.com/fake-id-security-flaw-could-greatest-threat-android-154006877.html)