Google urgently repairs two key zero-day vulnerabilities in the Android system to prevent remote attacks. One of the vulnerabilities allows an attacker to access an Android device through unauthorized system components. Please update your Android device to the latest software version immediately to prevent potential vulnerabilities.
Your Android phone may be at risk. Security researchers have discovered some serious system vulnerabilities that hackers are actively exploiting for attacks. Be sure to pay attention to this issue.
Google recently released an urgent Android system update to resolve two "zero-day vulnerabilities". These are not ordinary software errors, but security vulnerabilities that were previously unknown to developers, and worse, these vulnerabilities have been used for actual attacks and may have caused some Android devices to be compromised. Google acknowledges that these vulnerabilities “may be subject to limited, targeted exploitation”, which should be taken seriously.
One of the key vulnerabilities, called "CVE-2024-53197", was discovered by Amnesty International and Benoît Sevens of Google's Threat Analysis Team. This team at Google focuses specifically on cyberattacks that seem to be backed by the government. Cellebrite, a company that sells mobile phone unlocking and forensic analysis tools to law enforcement, is leveraging three zero-day vulnerability chains to unauthorized access to Android devices, according to the results of Amnesty International.
Related##### Why are there so many zero-day vulnerabilities?
Cyber criminals exploit zero-day vulnerabilities to hack computers and networks. Zero-day exploits seem to be increasing, but is that true? Can you protect yourself? We will dig into these details in depth.
The vulnerability was reportedly used to attack a Serbian student activist. The group claims local authorities used the security breach to attack its devices. This is a real-world example of the severity of these zero-day vulnerabilities.
The second fixed vulnerability ("CVE-2024-53150") has less information. It was also discovered by Google's Benoît Sevens, a vulnerability that exists in the core of the Android operating system, the kernel. This level of vulnerability could allow an attacker to gain deep control of the affected device.
Google has not commented on such vulnerabilities yet. Amnesty International has no more information to share at the moment. However, the severity of the situation can be seen from Google's security announcements.
The most serious of these issues is a critical security vulnerability in system components that can lead to remote permission elevation without any additional execution permissions. Vulnerability exploits require no user interaction.
The last sentence is the most worrying. This means that malicious actors can hack your device without even clicking on suspicious links or installing harmful applications.
Google said it will release source code patches for the two key zero-day vulnerabilities within 48 hours of issuing the security announcement. While this is good news, it still needs to go through the regular process to get to your device. Since Android is an open source operating system, it is the responsibility of mobile phone manufacturers to obtain these patches and integrate them into their software updates for specific devices.
Google has informed its Android partners about these issues at least a month ago to give manufacturers time to prepare and roll out updates to customers. However, it is not yet certain when these updates will be available.
So, what should you do? The only thing you can do is make sure your Android device has been updated to the latest available software version and install any updates as soon as possible. At the same time, it is always a good practice to develop the habit of clicking on links and installing applications, even in this particular case, more serious vulnerabilities do not require user interaction.
The above is the detailed content of Google Rolls Out Update to Address Two Android Zero-Day Bugs. For more information, please follow other related articles on the PHP Chinese website!
How to Enable ADB on an Amazon Fire TabletApr 18, 2025 am 03:03 AMTurn on the ADB debugging mode of Amazon Fire tablets and easily control your device! This article will guide you step by step how to enable ADB and provide some practical command examples. First, you need to enable the developer options. Open the Settings app on the Fire tablet, find the Device Options or About menu, and then find the Serial Number item. Click "Serial Number" for about seven times in a row, and you will see the prompt message "You are the developer now!" and the developer option is enabled. Related ##### How to install the Google Play Store on Amazon Fire Tablet The Amazon Fire tablet is limited to the Amazon App Store, but it runs Fire OS, a custom version of Android.
Minimal Phone Review: A Phone You'll Want to Use LessApr 18, 2025 am 01:09 AMThis review explores the Minimal Phone, a unique smartphone boasting an E-Paper display and a physical keyboard. Its unconventional design aims to curb phone addiction while maintaining modern functionality. A Retro-Modern Blend: The Minimal Phone
Your Android Is Getting a New Auto-Reboot Security FeatureApr 18, 2025 am 01:07 AMGoogle enhances Android security with automatic restarts after three days of inactivity. This new feature, delivered via a Google Play services update (not an OS update), improves security by returning devices to an encrypted "Before First Unloc
This Hidden Breathing App Is My New Favorite Thing About My Galaxy WatchApr 18, 2025 am 01:04 AMThe Galaxy Watch 6: A Breath of Fresh Air on Your Wrist For years, smartwatches felt like wrist-mounted distractions. My Galaxy Watch 6, however, has become a tool for reducing phone dependence and fostering mindfulness. A hidden gem within the wat
You Don't Have to Choose Between iPhone and Android With the New Chipolo Pop TrackerApr 17, 2025 am 03:01 AMChipolo Pop Bluetooth Tracker Review: Taking into account both Apple and Android Losing your keys or wallet is a headache. Chipolo has been committed to helping users find lost items, and their latest product Pop is designed to meet the needs of both iPhone and Android users. It combines some of the best features of previous trackers to become a multi-functional device. If you have used Chipolo’s tracker before, you will notice that Pop has a similar colorful look as the previous Chipolo tracker. The key difference, however, is that it can work with both Apple's Find My Devices networks and Google's Find My Devices networks. Previously, you had to make a choice: iPhone users use Chi
Get the Samsung Galaxy S24 FE for $150 Off TodayApr 17, 2025 am 12:55 AMSamsung Galaxy S24 FE: A great flagship phone with limited time special offer! Original price $650, current price $500, save $150! The Samsung Galaxy S24 FE (Fan Version) is a more affordable choice for Samsung flagship phones. While there are some reductions in screen resolution and processor (with the Exynos 2400e chipset), it retains the flagship-class rear main camera. Amazon and Samsung's official websites are both priced at $500. That's $150 less than the original price, and it's absolutely great value for money for this phone with great hardware and long-term software support. The Galaxy S24 FE is an economical alternative to the Galaxy S24 and S25 series, and it comes with 6.7
Android 15 Says Goodbye to 16GB PhonesApr 17, 2025 am 12:54 AMAndroid devices with Google Play Store must now have at least 32GB of internal storage. This move aims to curb the issue of budget devices quickly running out of space. The updated Google Mobile Services (GMS) agreement mandates a minimum of 32GB int
Your Favorite Anker Chargers on Amazon Just Got More ExpensiveApr 16, 2025 pm 09:03 PMAnker Raises Prices on Amazon Due to Tariffs Bad news for Anker fans: The popular electronics company has increased prices on over 100 items on Amazon, averaging an 18% price hike. This is a direct result of escalating US tariffs on Chinese goods. W
Hot AI Tools
Undresser.AI Undress
AI-powered app for creating realistic nude photos
AI Clothes Remover
Online AI tool for removing clothes from photos.
Undress AI Tool
Undress images for free
Clothoff.io
AI clothes remover
AI Hentai Generator
Generate AI Hentai for free.
Hot Article
Hot Tools
VSCode Windows 64-bit Download
A free and powerful IDE editor launched by Microsoft
Notepad++7.3.1
Easy-to-use and free code editor
MinGW - Minimalist GNU for Windows
This project is in the process of being migrated to osdn.net/projects/mingw, you can continue to follow us there. MinGW: A native Windows port of the GNU Compiler Collection (GCC), freely distributable import libraries and header files for building native Windows applications; includes extensions to the MSVC runtime to support C99 functionality. All MinGW software can run on 64-bit Windows platforms.
WebStorm Mac version
Useful JavaScript development tools
SublimeText3 Linux new version
SublimeText3 Linux latest version
