in ,

Google Fixes Critical Vulnerability in Android: Update Your Smartphones Now

Google fixes critical Android vulnerability

Google fixes critical Android vulnerability
Google fixes critical Android vulnerability

When it’s not Chrome, it’s Android. Google has just released its September security update, and given the critical nature of the patches included, it’s highly recommended to install it as soon as possible.

For years now, Google has adhered to a monthly routine: releasing security updates at the beginning of each month to address vulnerabilities before they can be exploited. However, this time, the changelog brought an unwelcome surprise: one of the 34 vulnerabilities patched in this update is a high-severity CVE.

An Actively Exploited Vulnerability

The vulnerability, labeled CVE-2024-32896, has a CVSS score of 7.8 according to the NIST classification. It allows hackers to exploit a logical error in the OS code to bypass certain security barriers on Android and gain elevated privileges without requiring additional permissions. This type of vulnerability is not new, but the current security risk is significant because it was already detected and patched on Google Pixel devices last June.

Since then, three months have passed without other smartphone manufacturers providing a patch for their devices. As a result, this vulnerability, which has been known to the public since early summer, has been actively exploited.

Therefore, it is highly recommended to update your Android system with the September patch, which includes versions 12, 12L, 13, and 14, as earlier versions are no longer supported by Google. To do this, go to Settings > System > Software Updates > System Update. If the update doesn’t appear, you can manually search for it by selecting Check for Updates.

A Separate Patch for Google Pixel Devices

In addition to the actively exploited vulnerability, the September Android security patch addresses 33 other significant vulnerabilities, two of which are linked to Qualcomm components.

Simultaneously, Google has deployed a second patch exclusively for Pixel 6 and newer models running on Android 14. This patch addresses six vulnerabilities that could lead to privilege escalation attacks, all of which are assessed by NIST as critical security risks for the devices.

Another positive outcome of this security update is the resolution of the Showcase.apk issue. This undetectable application, developed by Smith Micro for Verizon, was designed to transform Google smartphones into demonstration devices in stores. Installed on all Pixel devices since 2017, Showcase.apk gained notoriety this summer when hackers exploited it to execute remote code and install malware on compromised devices. Google has been aware of the issue since May 2023, but remained vague regarding the deployment of a security patch.

Why It’s Crucial to Update Immediately

This new information underscores the importance of promptly installing security updates on all Android devices. Cyber threats evolve quickly, and every day that passes without patching vulnerabilities like CVE-2024-32896 increases the risk of exploitation by malicious actors. Users are encouraged to be proactive about their device’s security by staying informed about the latest updates and applying them as soon as they become available.

For Pixel owners, the additional patches for Android 14 make it even more critical to keep devices updated to avoid potential attacks that target known vulnerabilities. Google’s commitment to security through regular updates shows the company’s effort to protect its users, but it also requires action from the users themselves.

How to Ensure Your Device is Secure

To protect your device, follow these steps:

  1. Check for Updates Regularly: Go to Settings > System > Software Updates > Check for Updates.
  2. Install Updates Promptly: Don’t delay in installing any available updates to ensure that your device is protected against the latest threats.
  3. Stay Informed: Follow official channels like Google’s blog or trusted tech news sites to stay up-to-date on the latest security updates.

By taking these steps, you can significantly reduce the risk of falling victim to exploits targeting known vulnerabilities. Remember, cybersecurity starts with you, and staying updated is a simple but crucial step in safeguarding your personal information.

Source : Bleeping Computer

Written by Atti Abderrahim

Leave a Reply

Your email address will not be published. Required fields are marked *

AI regulation

The United States Takes Action on AI Regulation, But at Its Own Pace

Zenbook S14 ASUS has made a significant leap in the race for thin and light laptops. At the IFA 2024 in Berlin, the company introduced the new Zenbook S14, the thinnest laptop ever launched by ASUS. Boasting a thickness of just 1.1 cm and weighing only 1.2 kg, this ultraportable features the latest Intel Lunar Lake processors, which are powered by AI technology. Scheduled for release in France in mid-September, starting at €1,599, the Zenbook S14 is the ultraportable version of the impressive Zenbook S16. The Zenbook S16, launched in June at Computex with an AMD version that received positive reviews, now has an Intel Lunar Lake counterpart. The Zenbook S14 features a 14-inch chassis that mirrors the sleek design of its larger sibling and comes with an innovative "Ceraluminium" lid — an alloy combining the tactile feel of ceramic with the strength and lightness of aluminum. ### Elegant and Ultra-Compact Design Like the Zenbook S16, the Zenbook S14 incorporates a wide, geometrically designed band above the keyboard, featuring 2,715 perforations to improve airflow within the chassis. This design not only enhances the cooling efficiency but also adds a unique aesthetic to the laptop. Although ASUS has not yet released the complete technical specifications for the Zenbook S14, we know that it will feature a Lumina OLED display with a 3K resolution and a 120 Hz refresh rate. This is expected to deliver exceptional image quality, similar to what is offered by the Zenbook S16, which also features a 3K OLED display with a 120 Hz refresh rate. ### Powered by Intel Lunar Lake Under the hood, the Zenbook S14 is equipped with the latest Intel Lunar Lake processors. It is powered by the Intel Core Ultra 9 series, possibly the powerful Core Ultra 9 288V, which features a Neural Processing Unit (NPU) capable of delivering up to 48 TOPS for AI tasks. This makes it a strong competitor against AMD's Strix Point and Qualcomm's Snapdragon X processors, allowing for local AI processing capabilities. The Zenbook S14 supports the Windows 11 Copilot features and enhances certain functionalities developed by ASUS. For instance, ASUS has implemented AI-powered noise cancellation for its 1080p webcam, significantly improving the quality of video calls. ### A Promising Battery Life ASUS has announced that the Zenbook S14 will feature a substantial 72 Wh battery, which is impressive for a 14-inch ultraportable. However, the company has not yet disclosed the expected battery life. Based on performance figures from other Lunar Lake-based devices from competitors, the Zenbook S14 could potentially offer up to 20 hours of video playback. More concrete details willZenbook S14

Zenbook S14: ASUS Unveils Its New Ultraportable Flagship in Berlin