Using an Android phone running less than 4.2?
You need to read this. (What should happen is that your handset manufacturer will release a patch, however I don't see that happening, one has to ask would Apple for IOS, and I suspect the answer would be yes, so it's down to Samsung, LG, Sony, Huawei and HTC and the like to step up to the plate...do you support your phones on android or not?)
Recently-released attack code exploiting a critical Android vulnerability gives attackers a point-and-click interface for hacking a majority of smartphones and tablets that run the Google operating system, its creators said.
The attack was published last week as a module to the open-source Metasploit exploit framework used by security professionals and hackers alike. The code exploits a critical bug in Android's WebView programming interface that was disclosed 14 months ago. The security hole typically gives attackers remote access to a phone's camera and file system and in some cases also exposes other resources, such as geographic location data, SD card contents, and address books. Google patched the vulnerability in November with the release of Android 4.2, but according to the company's figures, the fix is installed on well under half of the handsets it tracks.