Serbian security services exploited one of the actively exploited vulnerabilities to break into the phone of a youth activist in Serbia, according to Amnesty International.

Google’s monthly batch of security fixes addressed 43 vulnerabilities.

The monthly update closes 47 security vulnerabilities in total.

The bulletin identifies five critical remote code execution (RCE) vulnerabilities affecting the core components of Android’s system.

The guide comes as the government continues to deal with the fallout of the Salt Typhoon hack.

None of the patched bugs were considered critical.

The mobile company Cape’s Android-based phone complies with U.S. law but claims to offer a higher degree of privacy for users.

The November security bulletin includes two CVE's reportedly exploited in the wild.

The tech giant says it is receiving fewer vulnerabilities and that security improvements have resulted in a more secure Android ecosystem. 

The operations are just the latest example of the proliferation of sophisticated spyware among private vendors, Google says.