Pixel, Samsung, and Xiaomi phones among those susceptible to resurfaced zero-day vulnerability


Android security has come a long way in recent years. The promotion of monthly patches has kept many rising threats at bay while Google Play Protect largely bars malware from the Play Store. Despite these achievements, there are still instances where bad actors can exploit Android's code for nefarious purposes. Google's Project Zero team recently reported such an incident, and you may be at risk if you own one of the affected phones.
The vulnerability in question affects Android's kernel code, allowing a hacker to gain root access via a malicious sideloaded application. With root access, an attacker could manipulate privileges, steal data, and even tamper with the operating system.
Google originally discovered this vulnerability in 2017. A security patch released in December 2017 closed the exploit in the 4.14 LTS kernel, as well as the AOSP Android 3.18, 4.4, and 4.9 kernels. However, a handful of popular Android devices have been recently found to still be susceptible to this particular zero-day threat:
  • Pixel 2 (Android 9 Pie and Android 10 preview)
  • Huawei P20
  • Xiaomi A1, Redmi 5A, Redmi Note 5
  • Oppo A3
  • Moto Z3
  • LG phones (Android 8 Oreo)
  • Samsung Galaxy S7, S8, S9
Google's Project Zero confirms this bug has been exploited on a number of active handsets, and it has flagged the flaw as a high priority. Impacted Pixel phones will receive a security patch to resolve the issue in October with the remaining devices on this list following as soon as the respective OEMs can roll out updates.

Comments

Post a Comment

Popular posts from this blog

Linktree’s free workaround lets you add multiple links to your Instagram bio

Image
Instagram only gives you one opportunity to link to outside resources inside its photo sharing platform. This might not be a problem for a majority of the users, but for those wanting a little more customization and even more options, it leaves much to be desired. Enter  Linktree , a free tool for Instagram designed to improve traffic to your outside link, be it a blog, portfolio, or store. How it works is fairly straightforward. After connecting Linktree to your Instagram profile, you’ll receive a single link to place in your Instagram bio. Once that link in place, you can customize what it’s linked to within your browser, be it a single website, or a collection of sites you’re looking to direct followers to Say you’re a photographer who’s using Instagram as a marketing tool for your wedding photography. Using Linktree, you can direct Instagram followers to your blog, your portfolio site, and even your other social media accounts. Until now, you would’ve been stuck choosing b
Read more

How to connect your Nintendo Switch to the TV

Image
The  Nintendo Switch  is one-part handheld and one-part home console. But how easy is it to connect up to your TV?  The hybrid console can be played in a number of ways. There’s handheld mode, where you play with the controllers attached to the side of the Switch’s display.  There’s also tabletop mode, where you lean the Switch on its kickstand and detach the controllers for solo or group play.  Or there’s docked mode. This allows you to send a video feed from your console to a television in order to enjoy your favorite Nintendo games on a screen deserving of them. The Nintendo Switch’s own screen is only 6.2 inches, after all, with a middling 1,280 x 720 pixel resolution. This makes it perfect for gaming on-the-move, whether you're going on holiday or commuting.  But if you're staying put, replacing that with a 40-inch screen and 1,920 x 1,080 resolution makes a big difference in every sense of the word. And it'll bring out even more loving detail from the g
Read more

The best cheap Chromebooks that are actually in stock right now

Image
Chromebooks have been going in and out of stock over the past year, initially from the rise of remote work at the start of the COVID pandemic. Component shortages and remote schooling also resulted in fewer options being available, but as we head into 2021, there are some decent options in the $200-300 range. All of the models we've selected are fast enough to handle at least a few Chrome tabs and applications running at once, and when they're available, we try to include models with large screens. We have a dedicated guide for the best Chromebooks overall, but this list is solely focused on budget options that are actually in stock right now. Samsung Chromebook 4+: $299 The Samsung Chromebook 4+ is one of the best deals in the Chromebook market... when it's not out of stock, that is. While the laptop doesn't have a touch screen or 2-in-1 design, it does have a competent Intel Celeron N4000 processor and 4GB RAM. The main selling point here is the 15.6-inch 1080p scr
Read more