Dan GoodinMar 20, 2023

A wide range of Android phones are vulnerable to attacks that fully compromise the devices at their deepest level: the baseband. Fixes have yet to be delivered, except to a subset of vulnerable Pixels. In the meantime, Google and Samsung advise, users should do something that's not possible for most vulnerable devices: turn off VoLTE. Both Google and Samsung declined to provide further, actionable guidance to at-risk customers. Worse, even if/when it's possible to turn off VoLTE, this advice completely neuters most phones of any kind of voice calling capability.

This incident once again underscores the security mess of the Android ecosystem. It also demonstrates the lack of cooperation Google and Samsung regularly exhibit in keeping their customers safe.

Super sad.

https://arstechnica.com/information-technology/2023/03/critical-vulnerabilities-allow-some-android-phones-to-be-hacked/

Google tells users of some Android phones: Nuke voice calling to avoid infection

If your device runs Exynos chips, be very, very concerned.

Ars Technica
Show threadJim ReaMar 21, 2023
@dangoodin Guess I need to be extra careful to not buy a car with Android in it 😳
Show threaddonkeyMar 21, 2023

@provuejim @dangoodin this is one reason I’d have second thoughts about buying a Polestar EV.

First thought would be “I don’t have the $$ for that!”

😉

Show threadJim Rea
@donkey yes I thought that was a negative for the Polestar even before this story. I think some Volvos also have Android (basically the same company). Fortunately my one Android device doesn’t have voice or LTE (it’s a DJI drone remote controller).
Mar 21, 2023 at 5:28amWeb