Google Warns of “Severe Vulnerability” on Pixel and Samsung Galaxy Devices – Review Geek
A patch is already available for the Pixel 7, thankfully.
Justin Duino / Review Geek
Devices that utilize Samsung Exynos modems may be an easy target for hackers. In a new report, Google’s Project Zero team identified 18 zero-day vulnerabilities in recent Exynos modems. Google suggests disabling Wi-Fi calling and VoLTE on affected devices, though most users cannot disable these settings.
Only four of the vulnerabilities identified by Project Zero are of immediate concern. According to Project Zero, these vulnerabilities may enable internet-to-baseband remote code execution. While the details are a bit unclear, Project Zero claims that hackers can exploit these vulnerabilities using only a victim’s phone number. (The other 14 vulnerabilities require a “malicious mobile network operator or an attacker with local access to the device.”)
Project Zero first reported these vulnerabilities in late 2022. Google included a patch in the Pixel 7’s March update (which you should install if you haven’t already), but as Project Zero’s Maddie Stone notes, most devices are still unpatched.
End-users still don’t have patches 90 days after report…. https://t.co/dkA9kuzTso
— Maddie Stone (@maddiestone)…
Read Full Article Source