Table of Contents
Indian government alerts Samsung Users of Android versions 11, 12,13, and 14 about critical security issues.
On December 13, the Ministry of Electronics and Information Technology’s Indian Computer Emergency Response Team (CERT-In) released a security advisory alerting the public to several vulnerabilities in Samsung phones. The notice identified major security flaws in Android versions 11, 12, 13, and 14.
Samsung Users are warned by the Government
In a note issued by CERT, it said, multiple vulnerabilities have been reported that it could allow an attacker to bypass implemented security restrictions, access sensitive information, and execute arbitrary code on the targeted system.
These flaws could allow hackers to circumvent security measures, access sensitive data, and execute arbitrary code on targeted systems.
What are the risks?
These flaws could allow
- hackers to circumvent security measures, access sensitive data, and execute arbitrary code on targeted systems.
- Given the authorization issues with the AR Emoji app and poor access control in Konox features, attackers could compromise the device SIM PIN, bypass Knox Guard, and access AR Emoji sandbox data, among other things.
The danger to users is multifaceted.
- Hackers might take control of the phone, steal personal information, view private AR Emoji files, and issue commands to the phone.
How can Samsung Users curtail this adversary?
The warning urged users to take immediate measures to mitigate these risks. Users were strongly encouraged to install the security upgrades.
Samsung has yet to comment on this situation but its Security did address the problem via a website statement. In that, it has announced a release of security firmware, along with Google’s Android patch, in the impending December update. As part of the monthly Security Maintenance Release (SMR) process, It is releasing a maintenance release for major flagship models. Google and Samsung patches are also included in this SMR package.
The Union government urges all users, advising them to update their security systems and operating systems (OS) promptly to protect themselves from cyber attacks and hacking.