Pixel Phone Zero-Days Exploited by Forensic Firms

April 4, 2024 at 08:30AM Google’s April 2024 security update for Pixel phones addresses two zero-day vulnerabilities, CVE-2024-29745 and CVE-2024-29748, which forensic firms are exploiting to access device data. GrapheneOS, a privacy and security-focused mobile platform, urges additional mitigations. These include a partial fix from Google, but GrapheneOS proposes further measures such as auto-reboots and … Read more

Google fixes two Pixel zero-day flaws exploited by forensics firms

April 3, 2024 at 10:52AM Google has fixed two zero-day vulnerabilities in Google Pixel devices that were exploited by forensic companies to unlock phones without a PIN and access stored data. The vulnerabilities, CVE-2024-29745 and CVE-2024-29748, were actively exploited, prompting Google to issue a security update that addresses 24 vulnerabilities, including critical ones. Users can … Read more