By Natali Moss
Probably a problem arises from the incorrect processing of Unicode-symbols in Android. In particular, experts have tracked that the text of the message with reference may include invisible characters that completely change the actual URL to which the user presses. For example, the user goes to "Amazon. com", but through the inserted zero-width space character android in fact opens another link-"Zon. com".
The system does not show the hidden character, but reads it as a divider and thus changes the behavior of the "Open Link" button. It is especially dangerous if the attackers use the so -called Deep Links - links that directly trigger the functions of the application. For example, a "distorted" link can tear off a window of callsApp or launch internal Instagram, Discord, Telegram or Slack functions.
Experts say that hacker tricks work on different devices - Google Pixel 9 Pro XL, Samsung Galaxy S25 and older models. Moreover, antiviral programs are manifested in such cases powerless - because it is not a classic harmful software, but about manipulation of interface behavior and application settings. Therefore, users are advised to protect such tools at the level of the device that are able to identify anomalies in the behavior of the system.
English
Українська
USA
Français
Deutsch
Italiano
Polski
Čeština
Español
Slovensku
