Google researchers have detected a serious security flaw in a number of Android devices. These devices include the Google Pixel, Pixel 2, Samsung Galaxy S7, Galaxy S8, Galaxy S9, and Huawei P20. LG’s Oreo phones are also not left out.
Other phones on the list are the Xiaomi Redmi 5A, Redmi Note 5, Xiaomi A1, Oppo A3, and Moto Z3. These devices require additional patching.
This security flaw, known as the Zero-Day exploit, is part of the Android system kernel. It can allow an attacker to gain root access on a phone. What this means is that if your phone is affected, the attacker could access your data and modify system apps. They can even track your location.
Google reports that it found the flaw seven days ago. However, the tech giant said that it is actually not as serious as it sounds. So, you do not exactly have to get all concerned and afraid.
According to Google, the flaw requires the installation of a malicious software. So, basically, this can only happen with the user’s permission. This is why Google has rated the vulnerability as “high” and not “severe”.
What is odd is that this issue was supposed to be patched back in December 2017. But the patch was pushed back and was not later maintained in subsequent versions.
The exploit is believed to be used by Israeli NSO Group, a company that has been implicated in attacks on human rights and political activists. However, NSO Group denies this claim.