Numerous security vulnerabilities found in Android smartphones have prompted a warning from the Indian Computer Emergency Response Team (CERT-In). These flaws might provide hackers access to private information, increase their level of system privileges, or remotely run arbitrary code.
Affected devices include Android smartphones and tablets that run MediaTek and Qualcomm CPUs.
Because of this problem, attackers can quickly disable or circumvent the protection on your device by gaining elevated access without requiring additional execution privileges.
This advise comes after CERT-In issued a similar alert earlier this week about vulnerabilities in Apple iPhones.
Which versions of Android software are impacted?
Android versions 12, 12L, 13, and 14 are vulnerable to these vulnerabilities, according to CERT-In. The organisation stated that the problems derive from defects in the Android Framework, System, and Kernel in addition to parts from MediaTek, Qualcomm, ARM, Imagination Technologies, and Qualcomm’s proprietary parts.
How can Android device security problems be avoided?
CERT-In advised users to immediately install any updates sent by their device manufacturers in order to reduce these dangers. Additionally, users should make sure that the software on their Android devices is up to date, download apps from reliable sources, and turn on automatic updates for both the operating system and apps.
Be wary and refrain from clicking on strange emails, messages, or links, especially if they ask for login credentials or personal information. Phishing attempts are a frequent way for hackers to take advantage of weaknesses in systems. A factory reset is a final step to consider if you think your device has been compromised. This will remove all information from your device, including any malicious software.
Alert for Apple users: “Severe”
CERT-In released a “severe” advisory to Apple users earlier this week, citing many vulnerabilities in a variety of Apple products, such as Macs, iPads, and iPhones. These flaws may result in spoofing attempts, service interruptions, and data breaches. These vulnerabilities have been categorised by CERT-In as having a “High” severity level.
Affected Apple software was listed in the August 2 advisory as follows: watchOS versions before 10.6, tvOS versions before 17.6, visionOS versions before 1.3, and Safari versions before 17.6. The advisory also covered iOS and iPadOS versions before 17.6 and 16.7.9, macOS Sonoma versions before 14.6, macOS Ventura versions before 13.6.8, and macOS Monterey versions before 12.7.6.
Users are advised to update their devices to the most recent software versions available on Apple’s official website as Apple has released the required security fixes. A similar warning, highlighting the significance of updating iPhone software to reduce high-level dangers, was issued by CERT-In in May.
In order to fix these problems, CERT-In further advised Apple users to routinely update the software on their devices to the most recent security updates. Apple has emphasised the value of regular software upgrades and urged customers to make sure they are using the most recent version available.