Cybercriminals are having a field day with Android smartphones. We've recently told you about two massive security flaws that affected about 1 billion Android devices.
First there was Stagefright, followed soon after by Certifi-gate. Both infect your Android smartphones and tablets with malware that let cyberattackers take control of your Android device, opening the door for hackers to steal your personal information.
Now, IBM has issued a warning for another Android security flaw. It's called the Android Serialization Vulnerability, or CVE-2015-3825.
The Android Serialization Vulnerability affects Android versions 4.3 and higher - more than 55% of Android smartphones.
This is a privilege-escalation bug. With it, hackers can infiltrate your device in frighteningly easy ways. First, they could install a super-app that would give them access to your phone. From there, hackers would just install malware to help them take control of your phone.
Another vulnerability would let hackers steal your personal ID and other sensitive information by replacing one of your apps, say the Facebook app, with one of their malware apps. It works this way. You still see your original app, but behind it are cybercriminals rummaging through your personal information.
IBM gave Google advance warning about this security flaw before it warned the public. Google has created a patch to fix it, but that may take time to get to you.
Keep reading Happening Now for updates to Android smartphone security flaws, and fixes.