Sunday, January 17, 04:58
Home security Google fixes critical vulnerability in MediaTek chips

Google fixes critical vulnerability in MediaTek chips

As we mentioned yesterday, one serious vulnerability on MediaTek chipsets left millions unprotected Android smartphones. The company had released an update from May 2019, one month after the vulnerability was discovered, but Companies they had not taken care to implement it on smartphones their. Now, Google is releasing a patch to fix the vulnerability.

Η MediaTek is a very big one company creation chip, which designs chips for wireless communications, high definition televisions, and devices such as smartphones and tablets.

MediaTek error

The vulnerability was named MediaTek-SU (CVE-2020-0069) and was accidentally discovered by forum members XDA developers.

The vulnerability has been around since April 2019, but the attackers have begun to exploit it and carry out hacking campaigns lately.

As we said above, MediaTek immediately released an update to fix the vulnerability, but the update was not implemented on smartphones and so the hackers were able to hack sensitive phones and install malicious software on Appliances.

Google competitors data-apps

The exploit exists in almost all MediaTek 64-bit chipsets affecting Motorola, OPPO, Sony, Alcatel, Amazon, ASUS, Blackview, Realme, Xiaomi and other devices.

Exploiting vulnerability is a simple process. Users can execute a script to gain superuser access to the shell, as well as set it SELinuxThe Linux kernel module that provides access control for various processes. So by running the script, the users can acquire access with increased privileges on users' smartphones.

Running the error

Since January 2020, h Trend Micro has detected malware spyware on Google Play, that use MediaTek-SU vulnerability to infringe on the devices of the users who install them.

Now, the vulnerability is corrected by Google, along with other critical vulnerabilities, with its release Android Security bulletin for March 2020.

Another critical vulnerability that is corrected is CVE-2020-0032, which can execute malicious code and give access to systems of the victims.

LEAVE ANSWER

Please enter your comment!
Please enter your name here

Absent Mia
Absent Miahttps://www.secnews.gr
Being your self, in a world that constantly tries to change you, is your greatest achievement

LIVE NEWS

iPhone / iPad: How to close all Safari tabs at once

If you have dozens of Safari tabs open on your iPhone or iPad and want to close them quickly, it might be ...

Emotet has "evolved" and is at the top of the malware charts!

The infamous Emotet trojan returns to the top of the malware charts, having been "refreshed" and evolved to be more difficult to detect. The world ...

Signal: How to protect your messages with passcode?

In recent days the Signal messaging application has become quite popular. The Signal ...

The 5 best secure alternatives for WhatsApp

WhatsApp is one of the most popular messaging platforms, but it is definitely not accepted by everyone. Especially after his last ...

Android: How to see which apps have access to your site

It's no secret that smartphone apps have access to many permissions - if you let them. It is important to make sure ...

Canon lets you take pictures from space

Instead of releasing new cameras for CES 2021, Canon is doing something different: It lets you take pictures from space ....

Wikipedia vs Big tech: Who fights misinformation?

As Election Day turned into US Election Week, Facebook, Twitter and YouTube were trying to prevent ...
00:02:36

Tesla: It is called to recall cars due to problematic screens

The touch screen in some Tesla cars seems to have a problem, which could ...

Ransomware is responsible for half of all data breaches in hospitals

Almost half of the data breaches committed in hospitals and the wider healthcare sector are due to ransomware attacks, ...

Astronomers have just found the oldest oversized black hole

A quasar was discovered in a dark corner of space - over 13,03 billion light-years away - and contains a ...