September 26, 2024 at 05:19PM The number of memory-related vulnerabilities in Android has significantly decreased over the past five years, attributed to Google’s use of memory-safe languages like Rust. Memory safety issues now only account for 24% of all Android vulnerabilities, down from 76% in 2019. This shift has been credited to Google’s secure-by-design approach … Read more
September 25, 2024 at 03:34PM The shift in Android vulnerabilities caused by memory safety issues from 76% in 2019 to 24% in 2024 highlights Google’s adoption of memory-safe languages like Rust. This strategy retains older code with minimal changes focused on security fixes, while prioritizing new code in memory-safe languages. Google emphasizes proactive prevention over … Read more
September 13, 2024 at 06:21AM A newly discovered Android malware, Vo1d, has infected 1.3 million TV boxes running older Android versions. The backdoor malware can fetch and install additional software, exploiting system vulnerabilities. It poses as legitimate OS components and targets countries worldwide. Doctor Web suspects attacks via unofficial firmware or intermediate malware. Google has … Read more
April 3, 2024 at 10:52AM Google has fixed two zero-day vulnerabilities in Google Pixel devices that were exploited by forensic companies to unlock phones without a PIN and access stored data. The vulnerabilities, CVE-2024-29745 and CVE-2024-29748, were actively exploited, prompting Google to issue a security update that addresses 24 vulnerabilities, including critical ones. Users can … Read more