Indian Government warns Google Pixel & other Android users to beware of multiple vulnerabilities

With billions of users worldwide, Android undoubtedly dominates the mobile operating system landscape. In India alone, this OS powers the devices of millions of users. But according to the Indian Computer Emergency Response Team’s (CERT-In) recent report, numerous Android phone owners might be at risk. The Indian government has issued a high-severity warning to users of Android OS versions 11, 12, 12L, 13, and 14, citing various vulnerabilities that could jeopardize sensitive data.

The CERT-In team’s Vulnerability Note (CIVN-2024-0008) mentions that flaws in Android and hardware components can be exploited by attackers. According to the report, various flaws are present in Android OS’s Framework, System, and Google Play system updates. Exploiting these vulnerabilities will allow hackers to obtain sensitive information like contacts, emails, passwords, photos, and much more.

Doing so can also help them gain escalated privileges on the target device. For reference, the attackers can deploy a malicious payload as well as modify various security settings on your device. In addition to this, they can also open up additional attack vectors on your smartphone. The sad part is that these flaws are not limited to the hardware manufactured by just a single company.

According to CERT-In, components manufactured by some of the reputable companies like Arm, Imagination Technologies, MediaTek, Unisoc, and Qualcomm have these flaws. If your smartphone uses a Qualcomm component, then be aware that both normal and closed-source components are riddled with flaws.

To safeguard your Android smartphone from such attacks, we recommend that you update your device to the latest security patch. It might be possible that your device manufacturer has not yet released an update addressing this vulnerability. For the time being, you can enable the automatic updates option to ensure that your phone installs security patches automatically.

Also, we would advise that you exercise caution while installing new apps. For now, the best bet is to only install apps from trusted sources, such as the Google Play Store. CERT-In’s warning serves as an important reminder for us to stay vigilant and be proactive in adopting security measures to ensure a safe digital experience.