Android phone security vulnerability found!

Security researchers have announced that they have found a vulnerability in Android phones powered by Qualcomm and MediaTek. The vulnerability lies in the Apple Lossless Audio Codec (ALAC) application, which was introduced to provide lossless audio.

Apple has not updated the application used by Qualcomm and MediaTek since 2011. Security firm Check Point said hackers could exploit the vulnerability to maliciously execute code. Let’s take a look at the details of the news together.

Sounds can be listened to due to Android vulnerability!

The security firm announced that hackers can listen to Android phones and the sounds in their environment due to the vulnerability. In addition, he stated that they can make a remote code execution attack on devices thanks to an audio file.

Check Point also made the following statements about the Android vulnerability:

“ALAC issues our researchers found could be exploited by an attacker for a remote code execution attack on a mobile device via a malformed audio file. The attacks allow an attacker to remotely execute malicious code on the computer. The impact of the vulnerability can range from executing malware to an attacker gaining control over a user’s data, including streaming from a compromised machine’s camera.

Check Point made a statement last year stating that two-thirds of smartphones are vulnerable to attacks unless they receive an update. Qualcomm and MediaTek sent updates to smartphone manufacturers and Google last year.

MediaTek has not yet made a statement on the subject. Qualcomm, on the other hand, stated that it sent updates to the devices in 2021 and asked users to check it. Android users can verify for 2021 and later dates by checking for security updates from the phone’s operating system section.

What do you, our readers, think about this issue? Do you think the vulnerability in Android devices will cause big problems? You can express your thoughts in the comments section or on the SDN Forum.