Update now! Google Pixel vulnerability is under active exploitation

Google has notified Pixel users about an actively exploited vulnerability in their phones’ firmware. Firmware is the software layer between the hardware and the applications on the device.

About the vulnerability, Google said there are indications it may be:

           “under limited, targeted exploitation.”

This could mean that the discovered attacks were very targeted, for example by state-sponsored actors or industry-grade spyware.

All Android users should make sure they’re using the latest version available. For these Google devices, You can find your device’s personal information in your Settings app. You should get notifications when updates are available for you.

Technical details

The Common Vulnerabilities and Exposures (CVE) database lists publicly disclosed computer security flaws. The CVE for this vulnerability is:

           CVE-2024-32896: an elevation of privilege (EoP) issue in Pixel firmware.

We don’t just report on phone security—we provide it

Cybersecurity risks should never spread beyond a headline. Keep threats off your mobile devices by downloading Malwarebytes for iOS, and Malwarebytes for Android today.

Reference: MalwareBytes.