Google plugs serious Nexus vulnerability in latest security update

Click here to visit Original posting

Google’s monthly Android security patches are always imperative for whichever phones are able to get them, but the January bundle is of particular importance to Nexus 6 and 6P owners. As spotted by Ars Tehcnica UK, Googe has plugged a “high-severity” exploit in its latest patch that could allow attackers to listen in on calls and steal data.

Only brought to light last week by IBM’s X-Force Exchange, the vulnerability in the two phone models opens access to hidden USB interfaces. According to the report, “By rebooting the device with custom bootmodes, an attacker could exploit this vulnerability to override a secure USB configuration and gain elevated privileges on the system, cause a local permanent denial of service and exfiltrate sensitive information.” The researchers warned that the exploit could result in “data theft, data destruction, (and) data corruption.”

To read this article in full or to leave a comment, please click here

Google plugs serious Nexus vulnerability in latest security update

Want a cool smartphone? 1mm-thin “fan-on-a-chip” technology aims to make device overheating a thing of the past

Meta plans to make connecting your Quest headset to Windows 11 easier – by simply staring at your keyboard

Xiaomi’s Mix Flip foldable has arrived to take on the Samsung Galaxy Z Flip 6

You can watch The Legend of Vox Machina for free on YouTube ahead of season 3’s debut on Prime Video