Android users beware, new vulnerabilities has GoI worried, Cert-In issues critical warning

In a recent announcement, the Computer Emergency Response Team (CERT-In) operating under the Ministry of Electronics and Information Technology has issued a crucial alert regarding the security of older Android devices, specifically those running Android versions 13 and below.

The advisory, posted on the official CERT website, emphasizes a series of vulnerabilities within the Android operating system that pose significant threats to users.

CERT-In has classified the identified vulnerabilities in the Android OS as ‘Critical,’ indicating the potential for severe consequences if exploited.

The government agency cautions that exploitation of these vulnerabilities could empower attackers to execute their own code on the device, acquire elevated privileges, access sensitive user data, and even trigger a denial of service (DoS) situation, rendering the device inoperable. In simpler terms, these security loopholes could enable hackers to seize control of Android devices, compromise data integrity, or render the devices useless.

Impacted Android Devices
According to CERT-In, the highlighted vulnerabilities predominantly affect Android devices operating on older versions of the system, specifically Android versions 11, 12, 12L, and 13.

What raises concern is that these vulnerabilities are not limited to a single component; rather, they are dispersed across various segments of the Android system. This includes critical components such as the Framework, System, Google Play system updates, as well as components associated with different hardware manufacturers, including Arm, MediaTek, Unisoc, Qualcomm, and even Qualcomm’s closed-source components.

Fortunately, Google has already rolled out an update for the Android OS, addressing these identified issues. Consequently, users are strongly advised to promptly update their devices and implement necessary security measures to protect their phones.

Keeping yourself safe
To safeguard their devices from vulnerabilities and potential malicious attacks, users are urged to follow these security tips:

Update Security Patches Urgently
The government warning specifically highlights that certain vulnerabilities may already be actively exploited. Therefore, applying security patches by updating the OS is the most immediate and effective step to protect devices. These patches are designed to address identified vulnerabilities and enhance device security.

Keep Your Android OS Updated
Regularly updating the Android operating system is crucial to ensure the latest security features and improvements are in place, defending against known vulnerabilities.

Exercise Caution with App Downloads
Users are advised to exercise caution when downloading and installing apps, especially from unofficial sources. It is recommended to avoid third-party apps and stick to trusted app stores like the Google Play Store. Additionally, users should be mindful of the permissions granted to apps.

Review App Permissions
Periodically reviewing and revoking permissions granted to apps on the device is crucial. Permissions that seem excessive or unnecessary for an app’s functionality should be revoked.

Have Backups of Your Data
Regularly backing up data to an external source or cloud storage ensures the safety of valuable information in case of unexpected incidents.