Android users should take extra precaution when clicking links on suspicious websites. A new security flaw was discovered today that allows a malicious bit of HMTL code to completely wipe all the data from an Android phone.
The vulnerability is exploited when an Android user visits a web page that contains the code "tel:*2767*3855%23" within its HTML. The code creates a link that, to the user, looks like a telephone number. However, the link contains what is called Unstructured Supplementary Service Data, a special set of numbers wireless carriers use to remotely execute actions on your phone.
The security flaw was thought to only affect Samsung smartphones running Android and the company's TouchWiz user interface overlay. Gizmodo later learned that the bug also wiped out an HTC One X and a Motorola Defy. The site also discovered that Samsung is aware of the issue and that the latest firmware for the Galaxy S III is supposed to fix the issue.
Head over to Gizmodo to see a list of all the Samsung smartphones that are at risk.
[via Gizmodo]
