Google researchers have discovered a new zero-day Android exploit that is capable of infecting millions of devices. The vulnerability is at the core of the operating system and has already been used by a hacker. You will see below the phones that are known to be affected, including models by Google, The Samsung and Huawei.
Project Zero is a team of Google security analysts specializing in finding vulnerabilities. As reported by TechRadar, the latter exploit that was discovered by Project Zero can be used to gain root access to targeted devices.
The Google Threat Analysis Team (TAG) confirmed that the vulnerability has been used in real-world attacks. Israel-based NSO Group has been named as a possible culprit. (NSO has denied any involvement.)
In accordance with Project Zero, the error is a vulnerability of scaling local privileges that allows a compromised device to be fully compromised.
"This issue is highly regarded in Android and in itself requires it installation a malicious application for possible exploitation, "one researcher warned.
Here are the smartphones known to be affected by the vulnerability:
- Google Pixel 2
- Huawei P20
- Xiaomi Redmi 5A
- Xiaomi Note 5 Redmire
- Xiaomi A1
- Oppo A3
- Moto Z3
- LG phones running Android Oreo
- Samsung Galaxy S7
- Samsung Galaxy S8
- Samsung Galaxy S9
However, researchers fear that more Android smartphones could be affected, as the operator requires little or no customization per device.
How to Protect Yourself
Device manufacturers have been notified by Google, so operating system updates are expected to be released soon. In the meantime, it is imperative to avoid taking dangerous shots websites ή applications from sources you are not sure. Vulnerability requires the installation of a malicious application to take control of one device - as long as you avoid the above, your phone will remain safe.
How useful was this post?
Average rating / 5. Vote count: