Android flaw leaves 99% of devices open to attacks.

[eljorda]

http://www.techspot.com/news/53133-android-flaw-leaves-99-of-devices-open-to-attacks-details-to-be-revealed-at-blackhat.html

Mobile security company Bluebox claims to have discovered a flaw in Android that could leave any device released in the last four years vulnerable to attacks. The method demonstrated allowed modifying an app’s code without affecting its cryptographic signature, inserting malicious code completely unnoticed, leading to anything from data theft to creating botnets. The implications are huge, the researchers say.

[nanobtc]

I have attended both Blackhat and Defcon, it is a very enlightening experience! Note the last line of that blurb, as long as you stay with the regular sources you are probably OK.

t’s worth noting that for all the doom and gloom that Bluebox is spelling -- it appears to be a serious issue after all -- falling prey to hackers would require you to download an actual app that has been modified with malicious code. In other words, it requires user action, and most likely downloading from a non-official source.