The Indian Computer Emergency Response Team (CERT-In) has issued a warning to Android users. This time, India’s cybersecurity unit has noticed multiple high-risk vulnerabilities in smartphones with Qualcomm and MediaTek processors. The agency has listed Android version 12, 12L, 13 and 14 software that are affected due to the latest identified vulnerabilities. These multiple vulnerabilities reported in Android can be exploited by an attacker to obtain sensitive information and gain high privileges. These vulnerabilities exist in Android due to flaws in framework, system, kernel, Arm component, Imagination Technologies, MediaTek component, Qualcomm component, and Qualcomm closed-source component.

A critical security flaw has been identified in a Framework component that creates a significant risk of privilege escalation, allowing attackers to gain elevated access without requiring additional execution privileges. The severity of this vulnerability is determined by its potential impact on affected devices, assuming common security measures are disabled or successfully avoided.

Ways to keep your Android smartphone secure?

To protect their Android devices from such vulnerabilities, users can take several precautionary measures. Here is a step-by-step guide.

Update your device: According to the Android Security Platform and Google Play Protect, many issues on Android have become more difficult to exploit due to improvements in newer versions of the Android platform. We encourage all users to update to the latest version of Android where possible.

Turn on automatic updates: Enable automatic updates for both your operating system and apps. By keeping your software up-to-date, you’ll receive timely security patches and updates, reducing your vulnerability to potential threats and protecting your system from newly discovered vulnerabilities.

reliable source: Download apps from trusted sources like Google Play Store. Avoid downloading apps from unknown third-party apps.

Avoid clicking on unknown links: Be wary of unsolicited messages, emails or links, especially those that ask for personal information or credentials. Phishing attacks are common ways for hackers to exploit vulnerabilities.

factory reset: If you suspect your device has been tampered with, consider performing a factory reset. This will erase all data on your device, including malware, but be sure to back up important data first.