Samsung has announced the resolution of a critical zero-day security vulnerability that has been exploited to infiltrate its customers’ smartphones. The flaw, identified in a specific software library responsible for image display on Samsung devices, is found in systems running Android 13 up to the latest Android 16 version. This vulnerability enables hackers to remotely install malicious software on affected devices.
The issue came to light following a notification to Samsung from security teams at Meta and WhatsApp on August 13, who revealed that an exploit for this vulnerability was already in active use. However, Samsung has not disclosed which specific devices are affected by this security issue.
Classified as a zero-day, this vulnerability denotes that the company was unaware of the flaw until after it had been exploited, leaving no time for preemptive measures. As of now, it remains unclear who is behind this hacking initiative and how widespread the impact is among Samsung’s customer base, as the company did not respond to inquiries before publication.
This development coincides with a wave of security updates from various smartphone manufacturers addressing a rising spyware threat. In August, both Apple and WhatsApp released security patches for their respective platforms, tackling vulnerabilities that researchers believe were leveraged to target users of both iPhones and Android devices. WhatsApp indicated that it had notified fewer than 200 users whose devices were either targeted or compromised due to this campaign.
Apple has maintained silence on the specifics of the vulnerabilities it addressed, except to state that one was operated in an “extremely sophisticated attack” aimed at selected individuals. The tech giant has been proactively informing users about potential spyware attacks, encouraging them to seek assistance from digital security experts, including Access Now’s security lab. Most recently, on September 3, Apple alerted some of its customers that their phones might have been compromised as part of a broader spyware initiative detected by the French government.
In summary, the urgency of the situation highlights ongoing security challenges faced by tech companies, as they strive to protect users from emerging threats in an increasingly vulnerable digital landscape.
Fanpage: TechArena.au
Watch more about AI – Artificial Intelligence
