It's one of the biggest smartphone security flaws ever. The Stagefright bug affects almost a billion smartphones and tablets, and it lets hackers take over with a text message. Except it doesn't even need to be a text message anymore.
When I told you about this bug last week, reports indicated that all the hackers needed was your phone number to send you the Stagefright malware. Now, they are saying that hackers don't even need that.
All they need to do now is wait until you download an infected application or visit a website they've rigged to bug your Android.
The cybercriminals pair their destructive coding into the app or website's normal coding, and as soon as you download or visit, it's too late. Security software won't recognize the flaw since it's surrounded by safe coding. Once the hackers are in, there is almost no way to get them out, besides a complete factory reset.
Once the hackers are into your gadget, they could do just about anything they want. From hacking onto your mobile banking app to using your Android's microphone to record your private conversations, the ways this flaw could be exploited is virtually limitless.
The good news is that there have been no recorded hacking attempts since we first reported on Stagefright and there is news that Google is working to repair some vulnerable Androids. Since each Android phone has different software, a patch for every model probably won't be released for several months.
We're hoping a patch comes to all sooner rather than later, and definitely before hackers wise up and begin exploiting the flaw in the Android operating system.
Until then, stay tuned to what's Happening Now. We'll keep you up to date with all of the latest Stagefright details and other important tech news you need to know.