Imagine one day, you woke up to find a message containing a cute image on your smartphone, and later that day you got hacked.
Those innocent-looking images that you receive through messaging or email apps could hack your Android Smartphone, just by downloading the image. Reportedly, there are newly discovered critical vulnerabilities that affect millions of devices running the recent versions of Google’s Android OS.
While the vulnerabilities have been patched in Android Open Source Project (AOSP) by Google as part of its February Android Security Updates, it is known that every handset manufacturer runs security patches in monthly basis making it difficult to determine when will your Android device get these security patches.
“The most severe of these issues is a critical security vulnerability in Framework that could allow a remote attacker using a specially crafted PNG (Portable Network Graphics) file to execute arbitrary code within the context of a privileged process” said Google.
This cyberthreat is very much giving headache to Google as it is reportedly having no active exploitation. Google has notified its Android partners of these vulnerabilities a month before the publication and that the source code patches for these issues will be released to the AOSP repository.