If you are using a Samsung smartphone and it hasn’t been updated in a very long time, then you might be vulnerable to attacks from hackers.
A security firm called Kryptowire has discovered a major security flaw that allows hackers to take over a device.
The security company discovered a vulnerability (CVE-2022-22292) that could allow a hacker to take a range of actions, including making phone calls, installing/uninstalling apps, and weakening HTTPS security by installing unverified certificates, running apps in the background, and even factory resetting a device.
The vulnerability appears to impact virtually all Samsung smartphones running Android 9 through 12, thanks to the pre-installed Phone app that has an “insecure component.” Because the Phone app runs with system privileges, this opens up an attack vector for bad actors.
Malicious apps can use the Phone vulnerability to “mimic system-level activity” and access functionality that would otherwise be protected.
It is strongly advisable that you update or upgrade your Samsung smartphone to the latest software to ensure the safety of your smartphone.