Great Moto G Stylus deal on Amazon!

If your Samsung phone is running Android 9-12, it might have been hijacked

By
8comments
Samsung Android Software updates
If your Samsung phone is on Android 9-12, it might be under a hacker's control
Mobile security and privacy solutions provider Kryptowire has revealed that some Samsung phones were found to be vulnerable to a flaw (CVE-2022-22292) that was capable of granting malicious third-party apps a frightening level of control.

The vulnerability was found in phones running Android 9, 10, 11, and 12, including some of Samsung's best phones like the flagship Samsung S21 Ultra 5G and S10 Plus, as well as the mid-range A10e.

The vulnerability was in the pre-installed Phone app and could have granted the permissions, privileges, and capabilities of a system user to a third-party app without any user involvement. The main cause was incorrect access control exhibited by the Phone app and the problem was specific to Samsung devices. 

Ever think someone else has access to your phone? Unfortunately, you may be right. Mobile applications are becoming the primary point of personal and professional activity, representing an increasingly attractive target for bad actors.” Alex Lisle, CTO Kryptowire.

The vulnerability could have allowed an app with no permissions to execute actions such as installing or uninstalling arbitrary apps, doing a factory reset, calling a phone number including privileged numbers like 911, and weakening HTTPS security by installing a custom root certificate. Normally, installed apps are dependent on the permissions that a user grants, but in this case, that wasn't required.

Samsung was informed about this on November 27, 2021, and the vulnerability was given a “High” severity rating by the South Korean giant. The February 2022 update comes with a fix for this, so be sure to install it.

Earlier this month, it was reported that some phones that launched with Android 12 installed, such as the Galaxy S22 series, were affected by a security vulnerability called Dirty Pipe. It's not clear yet if the April 2022 update has taken care of this issue.

https://m-cdn.phonearena.com/images/users/270-200/Anam.jpg
Anam Hamid Mobile Tech News and Deals Journalist
Anam Hamid is a computer scientist turned tech journalist who has a keen interest in the tech world, with a particular focus on smartphones and tablets. She has previously written for Android Headlines and has also been a ghostwriter for several tech and car publications. Anam is not a tech hoarder and believes in using her gadgets for as long as possible. She is concerned about smartphone addiction and its impact on future generations, but she also appreciates the convenience that phones have brought into our lives. Anam is excited about technological advancements like folding screens and under-display sensors, and she often wonders about the future of technology. She values the overall experience of a device more than its individual specs and admires companies that deliver durable, high-quality products. In her free time, Anam enjoys reading, scrolling through Reddit and Instagram, and occasionally refreshing her programming skills through tutorials.

Recommended Stories

Loading Comments...

Popular stories

T-Mobile is now going to dictate where you can use its 5G internet
T-Mobile is now going to dictate where you can use its 5G internet
Samsung's killer Galaxy Watch 6 Classic trade-in deal comes just in time for Mother's Day
Samsung's killer Galaxy Watch 6 Classic trade-in deal comes just in time for Mother's Day
Apple signals the imminent release of the iPad Air (2024) and iPad Pro (2024)
Apple signals the imminent release of the iPad Air (2024) and iPad Pro (2024)
Verizon customers need to be on red alert as a phishing campaign aims to steal their money
Verizon customers need to be on red alert as a phishing campaign aims to steal their money
Why in the world would I pay top dollar for the Galaxy S24 Ultra if it gets left behind by Samsung?
Why in the world would I pay top dollar for the Galaxy S24 Ultra if it gets left behind by Samsung?
The speedy iPad Mini 2021 is even sweeter than usual after a lovely discount on Amazon
The speedy iPad Mini 2021 is even sweeter than usual after a lovely discount on Amazon

Latest News

Grab the OnePlus Pad at its lowest price through this sweet deal
Grab the OnePlus Pad at its lowest price through this sweet deal
TikTok might shut down for real, as the owner apparently rejects selling the app
TikTok might shut down for real, as the owner apparently rejects selling the app
The small but capable Bose SoundLink Flex drops to its best price at Best Buy
The small but capable Bose SoundLink Flex drops to its best price at Best Buy
Patent shows the Galaxy Z Flip 7 may come with three cameras
Patent shows the Galaxy Z Flip 7 may come with three cameras
Is Apple going to take over your home with a Google-powered robot?
Is Apple going to take over your home with a Google-powered robot?
Introducing PhoneArena Battery Score: an easier way to learn about battery life on your phone
Introducing PhoneArena Battery Score: an easier way to learn about battery life on your phone
FCC OKs Cingular\'s purchase of AT&T Wireless