CERT-In Issues Warning For Millions Of Android Users, High-Risk Flaws Detected. Here's How You Can Protect Your Data

The Indian cybersecurity agency Computer Emergency Response Team (CERT-In) has issued a warning for millions of Android users about the security flaws that have been identified in them. As per the warning issued by CERT-In, these vulnerabilities can allow attackers to gain access to your confidential data and even gain higher system privileges. They can also execute execute arbitrary code remotely by exploiting these vulnerabilities. Due to the presence of this bug, attackers can gain elevated access to your devices powered by Qualcomm and MediaTek processors, and they won't even need any additional execution privileges. This can easily let them be in power to disable to bypass your device's security.

The advisory for Android users comes on the heels of the warning that was issued earlier this week for Apple users regarding similar vulnerabilities.

ALSO READ | Best Smartphones Under Rs 10,000 (August 2024): Poco M6, Lava Blaze 2, Moto G04, More

Affected Software Versions

CERT-In has specified that Android versions 12, 12L, 13, and 14 might be affected due to these vulnerabilities. The cybersecurity agency noted that the issues arise from flaws within the Android Framework, System, Kernel, as well as components from ARM, Imagination Technologies, MediaTek, Qualcomm, and Qualcomm’s proprietary components.

Qualcomm, in response to this warning, has said that it has already provided fixes to its OEMs ahead of the August Android security bulletin. A spokesperson from the company said, "Developing technologies that endeavor to support robust security and privacy is a priority for Qualcomm Technologies. The standard monthly Android Security bulletins are an essential tool for the continued health of the Android ecosystem. For the issues mentioned, Qualcomm made fixes available to its OEMs in advance of the August Android Security bulletin.”

The spokesperson urged users to install the security patches as soon as they get released by device manufacturers.

How To Safeguard Yourself?

To reduce potential risks, CERT-In advises users to quickly install updates provided by their device manufacturers. It’s also essential to ensure that Android devices are running the latest software version, to only download apps from reliable sources, and to enable automatic updates for both apps and the operating system.

Users should remain vigilant and avoid clicking on unsolicited messages, emails, or links, especially those asking for personal information or login credentials, as these are common phishing methods hackers use to exploit security flaws. If you believe your device has been compromised, performing a factory reset as a last resort can help, as it will remove all data on the device, including any malware.