Google’s security team has recently identified a significant vulnerability affecting certain Samsung phones, which could allow hackers to gain unauthorized access to these devices.
This vulnerability, known as CVE-2024-44068, was uncovered by Google’s Threat Analysis Group (TAG) and involves a flaw in Samsung’s processors, permitting attackers to execute arbitrary code. The issue specifically targets Samsung mobile chips, including older models like Exynos 9820, 9825, 980, 990, 850, and W920. As a result, many older Samsung devices, such as the Galaxy S10 and Note 10, may be at risk. Although Samsung issued a security patch on October 7, older devices that no longer receive regular software updates could remain vulnerable.
To illustrate the vulnerability, imagine an office building that, after completing a task, fails to close and secure its doors. In this analogy, the open door represents the bug that allows memory to remain accessible after a process ends, thereby giving hackers the chance to infiltrate and control users’ phones.
Researchers, including Xingyu Jin and Clement Lecigene, have reported that hackers are actively exploiting this vulnerability, which could grant them elevated access rights and enable malicious code execution on affected devices.
Additionally, this is not the first security concern for Samsung. The October security patch addressed five other critical vulnerabilities within Galaxy-specific software related to media handling processes. These vulnerabilities involved Samsung hardware driver processes, particularly camera services, which could be manipulated by malicious actors to disguise their activities.
Samsung has acknowledged this issue in a statement to The Register and is working on deploying a fix through ongoing monthly security updates. The company emphasized its commitment to ensuring user security and recommended that users regularly update their devices with the latest patches.
This situation raises particular concern for older Galaxy models that no longer receive consistent software updates. Users of affected devices are encouraged to consider upgrading to newer models to enhance their data security and privacy.