Samsung is set to issue an ‘early’ security upgrade earlier that patches a “critical” cyber flaw that has been exploited by hackers.
The vulnerability is such a risk that the US government raised red flags about it last month among federal staff.
The August 2024 security patch fixes a “critical” cyber flaw that, according to Google, hackers are well aware of.
The vulnerability, dubbed CVE-2024-32896, was first reported in June – but only for Google Pixel device owners.
At the time, Google issued a second security patch for Pixel devices, after its initial monthly update, to fix the CVE-2024-32896 bug.
Explaining more about the issue in June’s Pixel Update Bulletin, Google added: “There are indications that CVE-2024-32896 may be under limited, targeted exploitation.”
It has since been revealed that it’s not just Pixel owners who are exposed to the bug.
The cyber flaw actually impacts all Android phones, including Samsung devices.
In a statement to Forbes, Samsung said the update will be available to Galaxy phones and tablets next month.
The update comes a lot sooner than expected.
In June, the Korean tech giant told Forbes that a fix could take three months or longer.
Instead, by the time the update is available for download, it will have taken roughly two months.
Samsung owners have been urged to download the August 2024 patch as soon as possible.
When it was believed to just be a Pixel-isolated cyber flaw, the US government told staff that they must stop using their devices if the if they have not updated them.
To download the update, open Settings > Software Update > Download or Install.
Talk of the August 2024 security patch comes as Samsung’s July 2024 security update continues to roll out.
The July 2024, dubbed One UI 6.1.1, update fixes nearly 60 cyber flaws, and has been rolled out to eight Samsung devices so far.
It fixes several backdoor routes that hackers can use to break into people’s phones and access their data.
There are 58 vulnerabilities that have been fixed, including 25 that affect all Android devices and 33 that impact Samsung phones specifically.
Of the 25 Android flaws, four are “critical” issues, and the rest have been categorised as “high” risk.
Fortunately, none of the vulnerabilities were exploited by hackers before they were discovered, according to the published security notes.
Instead, cyber researchers – or bug catchers – found the vulnerabilities and privately disclosed them to Samsung, usually for a ‘finders fee’.
The foldable gadget had a rocky start to life...
