Samsung smartphone and Galaxy Watch users in India are urged to take immediate action following a critical security alert issued by the Indian Computer Emergency Response Team (CERT-In). The Indian government has highlighted a serious vulnerability affecting certain Samsung processors in mobile devices and wearables that, if exploited, would allow unauthorised access and privilege escalation on the device by an attacker. Fortunately, an update is already being rolled out by Samsung to block off this particular threat.
Which Samsung Processors Are Affected
The malware advisory, according to CERT-In, reveals a vulnerability classified as "use-after-free" exists in several Samsung mobile processors. Those affected include Exynos 9820, Exynos 9825, Exynos 980, Exynos 990, and Exynos 850, as well as the Exynos W920 used in Galaxy Watches. This type of bug could allow hackers to execute malicious code on affected devices. The widely publicised flaw grants attackers the potential to gain escalated privileges and compromise the security of devices and thereby achieve that without the notice of the user.
How to Know if Your Device is Affected
If you own a Samsung device, it's important to check and see if your processor falls under any of the above categories. Here are the steps you need to follow:
- Go to Settings on your device.
- Tap on About Phone.
- Check under Processor name.
If it turns out your phone has an affected processor, check for a new software update. Here’s how:
- Open Settings once more.
- Select Software Update.
- Tap on Check for new Updates.
- If there’s an available update, install the update and restart your phone.
Though security vulnerabilities occur frequently, it is crucial that top manufacturers come up with fixes promptly. By staying informed and keeping your device up-to-date, you can secure your phones and protect them against a possible threat.