Hey, guess what? Security researchers have found yet another means of stealing your personal data from your phone. For a change though, it is believed that this one may affect other mobile platforms as well as Android. This one essentially boils down to a phishing type attack, in which a malicious app is able to access data from another app that is stored in shared memory. Using this particular technique, the research team who discovered this vulnerability are reporting a success rate of between 80% - 90% at accessing data from apps such as Gmail, the Chase mobile banking app, and the H&R Block mobile app, among others. Fortunately, in order for this attack to work, quite a few conditions have to be met, including the installation of a malicious app to monitor other apps on your device and user interaction with that app to allow it steal the data. Unfortunately this is yet another scary proof of concept vulnerability that could cause serious heartache if not quickly addressed. The moral of the story, as always, is be careful what apps you install on your devices. More details are.
Source: Redorbit.com (thanks cmh714!)