Close Menu
Indo Guard OnlineIndo Guard Online
  • Home
  • Cyber Security
  • Risk Management
  • Travel
  • Security News
  • Tech
  • More
    • Data Privacy
    • Data Protection
    • Global Security
What's Hot

Openai prohibits chatgpt accounts used by Russian, Iranian and Chinese hacking groups

June 9, 2025

Operation malicious network supply software gets to NPM and Pypi ecosystems, focusing on millions worldwide

June 8, 2025

Extension of the malicious browser has infected 722 users across Latin America since the beginning of 2025

June 8, 2025
Facebook X (Twitter) Instagram
Facebook X (Twitter) Instagram YouTube
Indo Guard OnlineIndo Guard Online
Subscribe
  • Home
  • Cyber Security
  • Risk Management
  • Travel
  • Security News
  • Tech
  • More
    • Data Privacy
    • Data Protection
    • Global Security
Indo Guard OnlineIndo Guard Online
Home » Google Patches New Android Kernel Vulnerability Exploited in the Wild
Global Security

Google Patches New Android Kernel Vulnerability Exploited in the Wild

AdminBy AdminAugust 6, 2024No Comments2 Mins Read
Android Kernel Vulnerability
Share
Facebook Twitter LinkedIn Pinterest Email Copy Link


August 6, 2024Ravi LakshmananMobile Security / Vulnerability

Android kernel vulnerability

Google has fixed a serious security flaw affecting the Android kernel that was heavily used in the wild.

The vulnerability, tracked as CVE-2024-36971, has been described as a case of remote code execution affecting the kernel.

“There are indications that CVE-2024-36971 may be in limited, targeted exploitation,” the tech giant said noted in its August 2024 Android Security Monthly Bulletin.

As is usually the case, the company did not share any additional information about the nature of the cyberattacks exploiting the flaw or attribute the activity to a specific threat actor or group. It is currently unknown if Pixel devices are also affected by the bug.

Cyber ​​security

However, Clement Lecigne of Google’s Threat Analysis Group (TAG) was is counted with a flaw message, assuming it’s probably in use commercial spyware vendors to penetrate Android devices in highly targeted attacks.

The August patch addresses a total of 47 vulnerabilities, including those discovered in components related to Arm, Imagination Technologies, MediaTek and Qualcomm.

Google also fixed 12 privilege escalation flaws, one disclosure bug, and one denial-of-service (DoS) issue affecting the Android Framework.

In June 2024, the search company discovered an elevation of privilege issue in the Pixel firmware (CVE-2024-32896) was used in limited and targeted attacks.

Google later told The Hacker News that the issue’s impact extends beyond Pixel devices to the broader Android platform, and that it’s working with OEM partners to apply fixes where possible.

The company used to be too is closed two security flaws in the bootloader and firmware components (CVE-2024-29745 and CVE-2024-29748) that were exploited by criminal companies to steal sensitive data.

Cyber ​​security

The development comes from the US Cybersecurity and Infrastructure Security Agency (CISA) added CVE-2018-0824, a lack of remote code execution Microsoft COM for Windows Impact on Known Exploited Vulnerabilities (KEV) catalog that requires federal agencies to apply the corrections by August 26, 2024.

Complement follows a the report from Cisco Talos that the flaw was weaponized by a Chinese nation-state threat actor named APT41 in a cyberattack targeting an unnamed research institute linked to the Taiwanese government to achieve local privilege escalation.

Did you find this article interesting? Follow us Twitter  and LinkedIn to read more exclusive content we publish.





Source link

Share. Facebook Twitter Pinterest LinkedIn Tumblr Email Copy Link
Admin
  • Website

Related Posts

Openai prohibits chatgpt accounts used by Russian, Iranian and Chinese hacking groups

June 9, 2025

Operation malicious network supply software gets to NPM and Pypi ecosystems, focusing on millions worldwide

June 8, 2025

Extension of the malicious browser has infected 722 users across Latin America since the beginning of 2025

June 8, 2025

New company Atomic MacOS Campation Exploaits Clickfix to focus on Apple users

June 6, 2025

Microsoft helps CBI disassemble the Indian Centers for Japanese Technical Support

June 6, 2025

Expand users’ capabilities and protect against Genai data loss

June 6, 2025
Add A Comment
Leave A Reply Cancel Reply

Loading poll ...
Coming Soon
Do You Like Our Website
: {{ tsp_total }}

Subscribe to Updates

Get the latest security news from Indoguardonline.com

Latest Posts

Openai prohibits chatgpt accounts used by Russian, Iranian and Chinese hacking groups

June 9, 2025

Operation malicious network supply software gets to NPM and Pypi ecosystems, focusing on millions worldwide

June 8, 2025

Extension of the malicious browser has infected 722 users across Latin America since the beginning of 2025

June 8, 2025

New company Atomic MacOS Campation Exploaits Clickfix to focus on Apple users

June 6, 2025

Microsoft helps CBI disassemble the Indian Centers for Japanese Technical Support

June 6, 2025

Expand users’ capabilities and protect against Genai data loss

June 6, 2025

Why are more security leaders choose AEV

June 6, 2025

New data Wiper Pathwiper Data Wiper violates Ukrainian critical infrastructure in 2025 attack

June 6, 2025
About Us
About Us

Provide a constantly updating feed of the latest security news and developments specific to Indonesia.

Facebook X (Twitter) Pinterest YouTube WhatsApp
Our Picks

Openai prohibits chatgpt accounts used by Russian, Iranian and Chinese hacking groups

June 9, 2025

Operation malicious network supply software gets to NPM and Pypi ecosystems, focusing on millions worldwide

June 8, 2025

Extension of the malicious browser has infected 722 users across Latin America since the beginning of 2025

June 8, 2025
Most Popular

In Indonesia, crippling immigration ransomware breach sparks privacy crisis

July 6, 2024

Why Indonesia’s Data Breach Crisis Calls for Better Security

July 6, 2024

Indonesia’s plan to integrate 27,000 govt apps in one platform welcomed but data security concerns linger

July 6, 2024
© 2025 indoguardonline.com
  • Home
  • About us
  • Contact us
  • Privacy Policy

Type above and press Enter to search. Press Esc to cancel.