Security researchers have recently found a vulnerability
that could be used to hijack Android apps and devices, but an older issue that can have the same effect remains a significant threat nearly two years after its discovery, according to security firm Bromium.
The issue was reported in December 2012
A large number of applications and advertising frameworks embedded into applications use WebView to display Web content loaded from remote serversófor example, ads. The problem is that many of these apps donít load the WebView content over an encrypted HTTPS (HTTP Secure) connection.