• Contact Us
  • Work with Us/ iWitness
Tuesday, March 21, 2023
  • Login
  • Register
Swagenews
  • News
    • Politics
    • Naija News
    • Metro
    • ECONOMY
  • METRO PLUS
  • Sports
    • SOCCER
    • FIFA
  • Columns
  • Education
  • Gist
    • BB Naija
    • Celebrity
    • Local
  • Technology
  • Health wise
No Result
View All Result
  • News
    • Politics
    • Naija News
    • Metro
    • ECONOMY
  • METRO PLUS
  • Sports
    • SOCCER
    • FIFA
  • Columns
  • Education
  • Gist
    • BB Naija
    • Celebrity
    • Local
  • Technology
  • Health wise
No Result
View All Result
Swagenews
No Result
View All Result
Home News

Google warns users against remotely exploitable flaws in popular Android phones

Princewill Gibson by Princewill Gibson
March 17, 2023
in News
0
Google warns users against remotely exploitable flaws in popular Android phones

Google warns users against remotely exploitable flaws in popular Android phones

0
SHARES
1
VIEWS
Share on FacebookShare on Twitter

Google’s security research unit has discovered a few flaws and is warning about a set of vulnerabilities it discovered in certain Samsung chips used in dozens of Android models, wearables, and vehicles, fearing the flaws may be discovered and exploited eventually.

In a blog post, Google Project Zero head Tim Willis stated that in-house security researchers discovered and reported 18 zero-day vulnerabilities in Samsung Exynos modems over the last few months, including four high-severity flaws that could compromise affected devices “silently and remotely” over the cellular network.

“Tests conducted by Project Zero confirm that those four vulnerabilities allow an attacker to remotely compromise a phone at the baseband level with no user interaction, and require only that the attacker knows the victim’s phone number,” Willis said.

By gaining the ability to remotely run code at a device’s baseband level — essentially the Exynos modems that convert cell signals to digital data — an attacker would be able to gain near-unrestricted access to the data flowing in and out of any affected device, this will include cellular calls, text messages, and cell data, without the knowledge of the victim.

Also, see:

Twitch CEO Emmett Shear to step down

Microsoft’s new AI copilot for the Power Platform will create your apps for you

As far as disclosures go, it’s unusual to see Google — or any security research firm — raise the alarm on high-severity vulnerabilities before they’re patched. Google acknowledged the public risk, stating that skilled attackers “would be able to quickly create an operational exploit”  with minimal research and effort.

According to Project Zero researcher Maddie Stone, Samsung had 90 days to fix the bugs but is yet to do so.

In a March 2023 security listing, Samsung confirmed that several Exynos modems are vulnerable, affecting several Android device manufacturers, but provided few other details.

Affected devices include nearly a dozen Samsung models, Vivo handsets, and Google’s own Pixel 6 and Pixel 7 handsets, according to Project Zero. Wearables and vehicles that use Exynos chips to connect to the cellular network are also affected.

Google stated that patches will vary by manufacturer, but that its Pixel devices have already been patched with its March security updates.

According to Google, Users who want to protect themselves can turn off Wi-Fi calling and Voice-over-LTE (VoLTE) in their device settings, which will “remove the exploitation risk of these vulnerabilities” until affected manufacturers push software updates to their customers.

The remaining 14 vulnerabilities, according to Google, were less severe because they required either device access or insider or privileged access to a cell carrier’s systems.

Tags: GoogleGoogle Project ZeroSamsungSamsung Exynos
Previous Post

Twitch CEO Emmett Shear to step down

Next Post

OpenAI launches ChatGPT Plus subscription in India

Next Post
OpenAI launches ChatGPT Plus subscription in India

OpenAI launches ChatGPT Plus subscription in India

Leave a Reply Cancel reply

Your email address will not be published. Required fields are marked *

  • Contact Us
  • Work with Us/ iWitness

© 2023 Swage News - Bringing you up-to date and verified information from around the World

No Result
View All Result
  • News
  • Metro Plus
  • More
    • Columns
    • Education
    • Healthwise
    • Naija News
    • WORLD NEWS

© 2023 Swage News - Bringing you up-to date and verified information from around the World

Welcome Back!

Login to your account below

Forgotten Password? Sign Up

Create New Account!

Fill the forms below to register

All fields are required. Log In

Retrieve your password

Please enter your username or email address to reset your password.

Log In