Critical vulnerability in Android allows attacking Samsung, Huawei, Moto, Xiaomi and Pixel phones
Researchers at the Google Zero project have identified a critical zero-day vulnerability that affects at least 18 Android smartphone smartphones. The study shows that she has already gained access to all countries of the world.
An open exploit was attributed to the Israeli hacker group, the NSO group, but later their representative denied that they were involved in the software, developed or sold it. They stated:
“You have to be exploits. Our job is to create a protective product for government and private life-saving investigators. ”
The vulnerability has already been fixed in Android version 3.18, 4.14, 4.4 and 4.9 without CVE, but the latest OS versions are still not protected. The following phone models are currently vulnerable:
Pixel 1
Pixel 1 XL
Pixel 2
Pixel 2 XL
Huawei P20
Xiaomi Redmi 5A
Xiaomi Redmi Note 5
Xiaomi A1
Oppo A3
Moto Z3
Oreo LG Phones
Samsung S7
Samsung s8
Samsung S9
Google found out that the attack can go through two programs: either the Chrome sandbox will be used, or attempt hackers are inclined to install a fake application. Full access to all phone features.