DIY Photography

Hacking Photography - one Picture at a time

  • News
  • Inspiration
  • Reviews
  • Tutorials
  • DIY
  • Gear
Search

Submit A Story

Your Android Lollipop Camera Has a bug That Can Bypass The Lock Screen

Sep 22, 2015 by Udi Tirosh Leave a Comment

  • Share
  • Tweet
  • Flipboard
  • WhatsApp

android-camera

One of the nice features on Android phones is the ability to access the camera without having to go through the annoying process of unlocking the phone. While this feature is very comfortable, it opens a door to all kind of mischief. Especially if you have access to a friend`s phone. You can always take some funny photos that their parents would be surprised to see if they flip through the gallery. This is funny but really quite harmless, researchers from the University of Texas discovered that once the camera is active, it can be used to bypass the home screen lock and access the phone. And that is quite less harmless.

The vulnerability, first reported to Goggle in June involves creating a long string of characters by copy/pasting numbers into the emergency call screen. Then, starting the camera app from the lock screen by swiping left and trying to access the settings page by swiping down. Normally, you can not do that and will be prompted for a password.

If you continue pasting the long string of characters from the emergency call screen, the camera app will eventually crash and expose the home screen (it is sometimes partially exposed, but still provides plenty of access).

Google did release a pack for native android for this bug, but sadly many android users that do not use the native android version will have to wait for the phone manufacturer to issue a firmware fix. With the amount of devices running android, this may take quite some time….

The research page mentions that the phone must have a security set in pin or password form to be able to accomplish this breakin, and that devices which have pattern lock are safe from the issue. So if you are concerned, you can switch to pattern lock until you get a firmware fix.

This movie shows the security issue, I have to admit it quite boring, so you may wanna skip to 8:00 where the action starts.

[Android 5.x Lockscreen Bypass (CVE-2015-3860) via zdnet]

FIND THIS INTERESTING? SHARE IT WITH YOUR FRIENDS!

  • Share
  • Tweet
  • Flipboard
  • WhatsApp

Related posts:

Hackers can now use social media photos to bypass face detection security Google disables “Photos” on Android TV after privacy bug exposes users Android users rejoice. Prisma for Android is now available Open letter to GoPro – don’t lock us out of our cameras

Filed Under: news Tagged With: Android, camera app, security

About Udi Tirosh

Udi Tirosh is an entrepreneur, photography inventor, journalist, educator, and writer based in Israel. With over 25 years of experience in the photo-video industry, Udi has built and sold several photography-related brands. Udi has a double degree in mass media communications and computer science.

« Samsung rumored to be dropping out of the camera business
This 4K timelapse Is Covering The Entire North America, And its Amazing »

Submit A Story

Get our FREE Lighting Book

DIYP lighting book cover

* download requires newsletter signup
DIYPhotography

Recent Comments

Free Resources

Advanced lighting book

Recent Posts

  • DIYP Quiz: AI or photo?
  • Slowing down everyday activities to make one second last for one hour
  • This unique camera gives a clay pigeon’s view of the world – until it’s blasted out of the sky
  • This photo of glacier on Mars shows hint of water on the Red Planet
  • If your camera was a person, here’s what it would be like

Alex Baker is a portrait and lifestyle driven photographer based in Valencia, Spain. She works on a range of projects from commercial to fine art and has had work featured in publications such as The Daily Mail, Conde Nast Traveller and El Mundo, and has exhibited work across Europe

Dave Williams is an accomplished travel photographer, writer, and best-selling author from the UK. He is also a photography educator and published Aurora expert. Dave has traveled extensively in recent years, capturing stunning images from around the world in a modified van. His work has been featured in various publications and he has worked with notable brands such as Skoda, EE, Boeing, Huawei, Microsoft, BMW, Conde Nast, Electronic Arts, Discovery, BBC, The Guardian, ESPN, NBC, and many others.

John Aldred is a photographer with over 20 years of experience in the portrait and commercial worlds. He is based in Scotland and has been an early adopter - and occasional beta tester - of almost every digital imaging technology in that time. As well as his creative visual work, John uses 3D printing, electronics and programming to create his own photography and filmmaking tools and consults for a number of brands across the industry.

Dunja Djudjic is a multi-talented artist based in Novi Sad, Serbia. With 15 years of experience as a photographer, she specializes in capturing the beauty of nature, travel, and fine art. In addition to her photography, Dunja also expresses her creativity through writing, embroidery, and jewelry making.

Copyright © DIYPhotography 2006 - 2023 | About | Contact | Advertise | Write for DIYP | Full Disclosure | Privacy Policy