Millions of Samsung Galaxy smartphone owners are facing security threats.
People with Android versions 9 to 12 are at risk.
CryptoWire researchers released a report detailing how they discovered a serious vulnerability in a pre-installed phone app on several models that could allow a hacker to take control of someone’s phone, Forbes reported. .
Controls may include factory reset, making calls, and installing and removing apps.
According to the Cryptofil report, an unauthorized user can gain this type of access if the victim has installed a modified third-party application to “mimic system-level activity and hijack critical protected features”.
The Phone application is installed on all Samsung smartphones.
It turned out to be an insecure component that gave apps without system privileges the ability to run those privileges anyway without user intervention.
The extent to which the smartphones were vulnerable to this attack is unknown, but the researchers were able to test the Samsung Galaxy S10+ and Samsung A10e in patch tests.
A Samsung Galaxy S8 running Android 8 was found to be non-vulnerable.
The bad news is that anyone with a Samsung smartphone running Android version 9 and later can be vulnerable.
The good news is that a patch has been released as part of the February 2022 security maintenance release schedule, Forbes reported.
As long as the device is updated to the February security patch level or later, the owner is protected.
Not everyone will or will be able to update, so it’s important to check if the device needs an update.
This information is available in the phone settings app.
Sun has contacted Samsung for comment.
We pay for your stories!
Do you have a story for the US Sun team?
Prone to fits of apathy. Music specialist. Extreme food enthusiast. Amateur problem solver.