The Signal encrypted messaging application is seen on a mobile device in this illustration photo taken in Warsaw, Poland on March 25, 2025. (Photo by Jaap Arriens/NurPhoto)
Android partners and customers have experienced a temporary respite from double-digit vulnerabilities this summer. Google issued no security patches in its update last month.
Devices are displayed at the research lab of the Israeli firm Cellebrite’s technology on November 9, 2016 in the Israeli city of Petah Tikva.
It only takes a few seconds for an employee of Cellebrite’s technology, one of the world’s leading hacking companies, to take a locked smartphone and pull the data from it. (JACK GUEZ/AFP via Getty Images)
The most serious flaw in the monthly security update affects the Android system and could be exploited to achieve local escalation of privilege, the company said.
Serbian security services exploited one of the actively exploited vulnerabilities to break into the phone of a youth activist in Serbia, according to Amnesty International.