Smartphone users are being warned about security issues affecting several mobile phone models which allow hackers to attack devices remotely.
The security flaw was discovered by Google’s security team at Project Zero and puts both Google and Samsung devices and wearables at risk.
Devices can be compromised without the user knowing anything is wrong. Samsung is working on a fix to tackle the bug.
Users with the following devices need to be aware and are affected:
- Samsung: S22, M33, M13, M12, A71, A53, A33, A21, A13, A12 and A04 series
- Mobile devices from Vivo, including the S16, S15, S6, X70, X60 and X30 series
- Google: Pixel 6 and Pixel 7 series
- Any wearables that use the Exynos W920 chipset or vehicles using the Exynos Auto T5123 chipset are also at risk.
The tests run by Google security teams confirmed that the four vulnerabilities could allow an attacker to remotely compromise a phone at the baseband level without user interaction. They only require a victim’s phone number to do so.
How to Protect Yourself
Tim Wills, Google’s Project Zero Head said, “Until security updates are available, users who wish to protect themselves from the baseband remote code execution vulnerabilities in Samsung’s Exynos chipsets can turn off Wi-Fi calling and Voice-over-LTE (VoLTE) in their device settings. If users turn off these settings, it will remove the exploitation risk of these vulnerabilities”.
Wi-Fi calling can be turned off by pressing the phone icon, followed by the menu icon, and selecting Settings. Mobile phone users should then press the indicator next to “WiFi Calling” to turn the function on or off.
Turning off these settings will remove the risk of hackers taking over the device.
To find out more information about the latest smartphone devices, please email us info@piblu.co.uk or call us on 0161 388 8188.
