Get all your news in one place.
100’s of premium titles.
One app.
Start reading
Top News
Top News

Serious Security Vulnerability Discovered In Google Pixel Devices Worldwide

Google Pixel 7a 5G

An alarming security vulnerability has been discovered in Pixel devices, leaving millions of users at risk of cyber attacks. The vulnerability affects the Showcase app pre-installed on Pixel devices, allowing cybercriminals to inject malicious code and spyware through man-in-the-middle attacks.

The security specialist iVerify highlighted that the vulnerability was first identified on a device at Palantir, a highly secure institution. The app, running at the system level, can alter the phone's operating system due to being installed over unsecured HTTP protocols, creating a backdoor for potential compromise.

Concerns were raised about the lack of transparency and the inability to remove the app, with experts warning of serious implications for corporate environments where Android devices are prevalent. The app's design flaw allows it to retrieve configuration files over unsecured connections, potentially compromising the device's security.

Google has been notified of the vulnerability, and while there is no evidence of active exploitation, the company has committed to removing the app from supported Pixel devices through a software update. The app is not present on the latest Pixel 9 series devices.

Man-in-the-middle attacks can inject malicious code through the app
Pixel devices at risk of cyber attacks due to Showcase app vulnerability
Palantir identified the vulnerability on a highly secure device

Despite the app's origins as a demo application developed by Smith Micro for Verizon, its security weaknesses pose a significant risk to users. iVerify emphasized that only Google can address the vulnerability as it is part of the firmware image, leaving users with limited options to protect themselves.

The timing of this security warning coincides with Google's recent Pixel 9 launch, adding a layer of complexity to the company's efforts to maintain user trust and security. The decision by Palantir to transition to Apple devices underscores the severity of the issue and the impact it may have on user preferences.

In response to the security threat, Google is taking steps to address the issue and notify other Android OEMs about the potential risks. The removal of the vulnerable app from Pixel devices is a crucial step in safeguarding user data and privacy.

Sign up to read this article
Read news from 100’s of titles, curated specifically for you.
Already a member? Sign in here
Related Stories
Top stories on inkl right now
Our Picks
Fourteen days free
Download the app
One app. One membership.
100+ trusted global sources.