Home » News » Google Acquires Part of the Exploit Chain for Samsung Devices

Google Acquires Part of the Exploit Chain for Samsung Devices

November 11, 2022 By Jozeph P
(Image Credit Google)
Evidence was collected by Google's Project Zero team from a commercial surveillance vendor that shows there is an exploitation chain for multiple Samsung devices.  An attacker can gain access to kernel read and write rights through this, which can disclose data. A commercial surveillance vendor allegedly targeted Samsung cellphones and exploited three zero-day security flaws, according to data supplied by Google Project Zero These were found using the devices' specialized software, and they were all combined into one exploitation chain. According to the team's findings, since the attackers will be the root user, it will grant them access where they can acquire kernel read and write privileges. Galaxy S21 FE will receive the One UI 5.0 update for Android 13 The Exynos-equipped Samsung phones running a certain kernel version, according to Google Project Zero Security Researcher Maddie Stone, were primarily targeted in the exploit chain.  These phones are currently available on the market in a variety of locations, including Europe, the Middle East, and Africa. The Samsung S10, A50, and A51 are the smartphones that are impacted by this, she stated. Samsung’s Second Wave Of Update Is Scheduled For November According to reports, the problems have already been fixed. An Android app that fooled some users into installing outside of the Google App Store took use of the flaws. According to the study, the "malicious" software allowed the attackers to escape the application's sandbox, which is intended to protect user activities and access to the device's operating system. "The cornerstone of this chain was the first vulnerability in the chain, the arbitrary file read and write, which was used four times and at least once in each phase.  Despite running at such a privileged level in Android devices, security researchers don't frequently target Java components, "said Stone.

By Jozeph P

Journalism explorer, tech Enthusiast. Love to read and write.

Leave a Reply

You must be logged in to post a comment.
Latest News

Walmart's GenAI Search Engine: Challenging Google's Dominance in Retail Search
March 12, 2024

Introducing the MSI Claw Handheld: Your Ultimate Gaming Companion
March 12, 2024

Uber Increases In-App Ads, Prompting Mixed Reactions from Customers
March 12, 2024

Apple's iOS 18: A Leap into the AI Era
March 12, 2024

Google's Regular Pixel 8 Won't Get Gemini Nano AI
March 12, 2024

MacBook Air M3 Makes Amends for M2's Storage Blunder
March 11, 2024

Samsung Unveils the Galaxy M15 5G
March 11, 2024

Elon Musk's xAI to Open-Source Chatbot Grok
March 11, 2024

Contra: Operation Galuga - A Modern Run-and-Gun Classic
March 11, 2024

Musk Confirms X's TV App Arrives This Week
March 11, 2024
RELATED NEWS
Apple Halts Sales of Latest Watches in U.S. Amidst Oxygen Sensor Dispute

Apple is putting a stop to sales of its latest sma...

news-extra-space
Get 3 Months of Free Spotify Premium – Limited Time Offer for New & Returning Users!

Right now, Spotify is giving away three months of ...

news-extra-space
iPhone Users with Google Fi May Now Access 5G

Image Source:  If you've been bold enough to u...

news-extra-space
Samsung Galaxy users receives an early Valentine's Day gift

Samsung has started to send out an early Valentine...

news-extra-space
Huawei loses its export license: USA has barred Huawei from accessing the chip supply

Huawei has struggled to compete with US chips and ...

news-extra-space
What to Expect at Samsung's Unpacked event in February

On February 1st, Samsung will hold its first , and...

news-extra-space
2
3
4
5
6
7
8
9
10