Folks, may use the Android OS...especially for messaging. The app AirDroid has had 10-50 million installs not couting those done via the AirDroid website...and it's a very vulnerable app.
AirDroid was approached quietly and said they would fix it, but in its latest update, no fixes were present.
"The security issues are mainly due to AirDroid using the same HTTP request to authorize the device and send usage statistics. The request is encrypted, but uses a hardcoded key in the AirDroid application (so essentially, everyone using AirDroid has the same key). Attackers on the same network an intercept the authentication request (commonly known as a Man-in-the-middle attack) using the key extracted from any AirDroid APK to retrieve private account information. This includes the email address and password associated with the AirDroid account.
But this gets even worse. Attackers using a transparent proxy can intercept the network request AirDroid sends to check for add-on updates, and inject any APK they want. AirDroid would then notify the user of an add-on update, then download the malicious APK and ask the user to accept the installation." - AndroidPolice
So, if you have an Android device, you'd be smart to disable or uninstall AirDroid immediately.
Also, while you're at it, to check if your Google account has been hacked by Gooligan (a different exploit vs. Android), check this out: https://www.cnet.com/how-to/how-to-find-out-if-your-google-account-has-been-hacked/?ftag=CAD3c77551&bhid=22934121128163694730898056497463
Source:
http://www.androidpolice.com/2016/12/01/multiple-security-vulnerabilities-found-airdroid-including-ability-send-malicious-apks-users-device/
https://www.cnet.com/how-to/how-to-find-out-if-your-google-account-has-been-hacked/?ftag=CAD3c77551&bhid=22934121128163694730898056497463