A huge, severe vulnerability was just found inthe processor that Samsung uses and it’s bad. So bad that Google didn’t want to tell anyone about it at least until they were ready to fix it in their own phone.
Project Zero, a team of security analysts at Google that aims to protect people from targeted attacks, has found eighteen 0-day vulnerabilities in Exynos modems. A 0-day vulnerability is a flaw that was previously unknown to the product vendor.
Since the Pixel 6 and 7 use Samsung exynos Processors in those processors the vulnerability allows a skilled hacker to hack your phone with only your phone number. No access to your phone, no links. You have to click on just your phone number.
Samsung hasn’t announced any fix for this yet, but in the meantime, if you’re on one of these devices if you can turn off WiFi calling and voiceover LTE.
According to Samsung’s website, the vulnerabilities are in its Exynos Modem 5123 and Exynos Modem 5300, and Exynos 980 and Exynos 1080 chipsets (via 9to5Google). These chips are found in the following devices:
- Samsung Galaxy S22 (only the Exynos-powered variants sold in the UK and Europe), A71, A53, A33, A21s, A13, A12, A04, M33, M13, and M12 series
- Samsung Galaxy Watch 5 and Watch 4
- Vivo S16, S15, S6, X70, X60 and X30 series
- Google Pixel 7 duo, Pixel 6 range, and Pixel 6a