[G3E9]

What's the possibility of using this exploit to patch the vulnerable Android systems?.. or to root the phone? It'd be an interesting solution against the time we'll have to wait for carrier services/manufactures to straighten themselves up.

(Say, if, oh I don't know... Knox and My Verizon got disabled or removed, Verizon would have no proof to void my warranty. It was Starbucks' wifi, promise!)

[userbinator]

That thought occurred to me too --- root the phone, patch the exploit, tell the user they now have full control, and don't do anything else malicious.

It's somewhat amusing to consider that giving the user full control of the device he/she owns may be regarded by some as malicious...

[TACIXAT]

The risk is if your payload is not perfect in all cases. Taken to the extreme, you brick a mission critical device and cost a life. This is why malware researchers don't write clean up code once they do C2 takeovers. If their cleanup command wrecks a medical device or some other ancient box still running XP, that's a lot of liability.

[Klathmon]

It's not quite as simple as "giving the user full control".

Doing so requires you to disable many checks and safeguards against other more prevalent kinds of attacks. Having an unlocked bootloader, unsigned OS, modified system partition, and putting all of the power of root behind one closed source binary...

[huxley]

I know many wouldn't see it as malicious (especially if it was done to someone else's device), but doing it without someone's knowledge or consent does seem to cross into that territory, especially if the user didn't understand or value the benefits.

[Gaelan]

If nothing else, you'd stop them from playing Pokémon Go.

[SomeStupidPoint]

I always thought the idea of "coral malware" (made it up, cause it grows and hardens as it goes) was interesting.

Essentially a worm, but one that patches the exploit it uses to infect, and then after X shares, deletes itself except for the patch. Eventually a "reef" of hardened remains covers the platform.

Illegal, because it is still malware, but an interesting avenue that hacktivists could explore.

[BoorishBears]

It's happened before:

https://en.wikipedia.org/wiki/Welchia

https://en.wikipedia.org/wiki/Anti-worm

[franciscop]

I thought the same about IoT, but of course after some searching it's already been made. All of those "IoT compromised" things you read, the compromising party also changes the default password so they are the only ones.