November 5, 2024

TechNewsInsight

Technology/Tech News – Get all the latest news on Technology, Gadgets with reviews, prices, features, highlights and specificatio

You *should* update your Pixel now. What are the security vulnerabilities that can't be overlooked? | Lifehacker Japan

You *should* update your Pixel now. What are the security vulnerabilities that can't be overlooked? | Lifehacker Japan

early juneGoogle has announced security updates for Pixel smartphones,Patches for 45 Android vulnerabilities releasedan act.

Security updatesProjections featureIt's not flashy, so users may not feel like upgrading their Pixel right away.

but,This update should be installed immediately.He is.

Vulnerabilities that the US government also considers serious

Of the 45 vulnerabilities fixed, one is particularly serious.

This flaw is tracked as CVE-2024-32896,Security loophole in lifting privilegesbe. Such defectsAllows malicious users to access system functions that are not normally allowed, opening the door to serious attacks..

Typically, most of these flaws are discovered before malicious users know how to exploit them, but the situation with CVE-2024-32896 is not so lucky.

In the security notes for this security update:“This indicates that CVE-2024-32896 may be vulnerable to limited, targeted exploitation,” Google says..

In other words, this vulnerability is an example of a “zero-day” problem.Flaws that malicious users know how to exploit before patches are released to the public.That's it.

All Pixels that do not have this patch installed remain vulnerable to malicious users who know about this issue and try to exploit it.

Google has not disclosed any additional information about CVE-2024-32896, so we don't know much about how this vulnerability works.

actual,ForbesAccording to the US government, the issue has been taken note of and federal employees using Pixel have been notified of the update by July 4. In other words,Should I update my Pixel or “stop using the product”?He is.

See also  Anker's Soundcore Sleep A20 Sleep Headphones Are More Effective Than Expected! They Could Be a "Sleep Essential" Item[مراجعة سلع العمل عن بعد رقم 104]

According to GrapheneOS, which is developing an open-source, privacy-focused operating system for smartphones,The fix for CVE-2024-32896 is actually the second half of a larger fix.It seems so.

In April, Google patched CVE-2024-29748, and GrapheneOS says both are aimed at fixing vulnerabilities that were being exploited by forensic firms.

How to correct your pixels

To install this security patch on your Pixel device, tap Yes.session」>「System」>「system update

Once the update is available, you can install it by following the on-screen instructions.

orAsk Google Assistant to update your Pixel nowYou can do it too.

Beware of the latest email malware that steals personal information from Chrome and Word | Lifehacker Japan

Once again! Update Google Chrome immediately |. Lifehacker Japan

Once again! Update Google Chrome immediately |. Lifehacker Japan

How to Hide Intrusive Ads on Android[يوتيوب والمتصفح]| Lifehacker Japan

How to Hide Intrusive Ads on Android[يوتيوب والمتصفح]| Lifehacker Japan

source: Android open source project, Herbs, X