Mobile Menace Monday: How dare that rootin’ Dirty COW
Cybercrime | News

Mobile Menace Monday: How dare that rootin’ Dirty COW

Posted: November 7, 2016 by Nathan Collier

If you follow cybersecurity news, you may have heard of the latest Linux exploit referenced under CVE-2016-5195, which has been dubbed Dirty COW. The name is derived based on the exploitation of the copy-on-write (COW) mechanism in Linux. The exploit allows an unprivileged user on a Linux system to gain increased privileges.

Why are we talking about Linux here?

As you may already know, the Android OS is based on Linux; thus, the first question on many mobile researcher’s minds when Dirty COW came to light was does it affect Android devices? The answer to that is YES, and is answered by NowSecure researcher Sergi Àlvarez i Capilla in his blog, The Dirty COW Droid. The blog comes complete with a proof-of-concept (PoC) that gains root privileges on an Android device using the exploit.

Oh no! Does MBAM Mobile protect me?

As with any exploit, whether it is Linux-based trickling down to the Android OS or one directly exploiting Android, no app can create a patch/fix. Not even a security app like MBAM Mobile. It is up to Google to push an update to Android devices to fix this issue.

We will, however, protect against any moolicious… er… malicious apps that try to use such exploits.

More about app patches

To reiterate, no app can create a patch/fix for an exploit on Android.  So if you see an app claiming to be a patch for Dirty COW or another Android exploit, there is a good chance it is malware. Don’t be fooled, and refrain from installing such apps especially if it is found on a third-party app store.

Make that moolah

The discovery of exploits like these are rare, and as you can image they tend to be hyped when they do come around. With Dirty COW, someone took “hype” to the level of “Udder madness!” by creating a webpage for the exploit with the cool domain name dirtycow.ninja along with a professionally made logo (as pictured below), a Twitter feed, and an online store to buy Dirty COW merchandise—because who wouldn’t want a Dirty COW candy jar during this upcoming holiday season. No hate from me, go make that moolah! Now excuse me while I go buy that Dirty COW t-shirt I’ve always dreamed of.

The Dirty Cow logo, courtesy of Dirty Cow

Nathan Collier

RELATED ARTICLES

Cerebral logo
News | Privacy

Mental health company Cerebral failed to protect sensitive personal data, must pay $7 million

April 18, 2024 - The Federal Trade Commission (FTC) has reached a settlement with online mental health services company Cerebral after the company was charged with failing to secure and protect sensitive health data.

CONTINUE READING 0 Comments
JuicyFields investment scam
News | Scams

Cannabis investment scam JuicyFields ends in 9 arrests

April 18, 2024 - JuicyFields was an investment scam that urged victims to invest in cannabis production.

CONTINUE READING 0 Comments
A mobile phone in the hands of a young woman in a dark colored t-shirt.
Privacy

Should you share your location with your partner?

April 17, 2024 - Location sharing is popular among couples. But is it something you want in your own relationship?

CONTINUE READING 0 Comments
Giant Tiger logo
News | Personal

Giant Tiger breach sees 2.8 million records leaked

April 16, 2024 - A threat actor claims to be in possession of 2.8 million records originating from a hack at Canadian retail chain Giant Tiger

CONTINUE READING 0 Comments
week in security
News

A week in security (April 8 – April 14)

April 15, 2024 - A list of topics we covered in the week of April 8 to April 14 of 2024

CONTINUE READING 0 Comments

ABOUT THE AUTHOR

Nathan Collier

Nathan Collier

Full time mobile malware researcher, part time endurance athlete and world traveler. As nerdy about traveling as he is about mobile malware.

Contributors icon

Contributors

Threat Center icon

Threat Center

Podcasts icon

Podcast

Glossary icon

Glossary

Scams icon

Scams