Mobile News

Samsung Galaxy Store latest update fixes vulnerability that could allow hackers to install apps without informing users

Samsung has released an update to the Galaxy Store app to fix vulnerabilities that could potentially allow malicious sources to install apps without user permission. The research team reportedly found two vulnerabilities in the Galaxy Store. These vulnerabilities only affect phones running Android 12 or earlier. Android 13 users are not affected. Users can open the Galaxy Store on their phones, download and install the latest version of the Galaxy Store app version 4.5.49.8.

According to report The NCC research team has discovered two security vulnerabilities in the Galaxy Store app preinstalled on Galaxy smartphones. CVE-2023-21433 and CVE-2023-21434. The vulnerabilities allow hackers to install malicious applications on vulnerable Samsung phones without the owner’s permission, as well as execute JavaScript while running a web page.

The report states that a pre-installed blush app or a malicious hyperlink in Google Chrome on Galaxy phones running Android 12 bypasses Samsung’s URL filter and installs any app available on the Galaxy Store. Further, they even launch an attacker-controlled webview. Notably, these vulnerabilities only affect Galaxy phones running Android 12, while phones running Android 13 are safe.

Hence, in order to fix these bugs, Samsung has released an updated version of the Galaxy Store app (version 4.5.49.8). Users can go to the Galaxy Store settings on their phones and download and install the latest version of the app. Samsung has rated the aforementioned vulnerabilities as moderate risks.

Previously, the Galaxy Store was reported to have distributed malicious apps that requested excessive permissions, including phone access. In December 2021, various clones of Showbox movie piracy apps available on the Galaxy Store were found to infect devices with malware. Tipster Max Weinbach has reported a similar type of issue previously found on Huawei phones. He shared that the installation of Showbox-based apps from the Galaxy Store was stopped by a Google Play Protect warning. At least five Showbox-based applications have been infected with dangerous malware.


Affiliate links may be generated automatically – see our ethics statement for details.

For the latest tech news and reviews, follow Gadgets 360 at Twitter, facebookand Google News. To stay up to date with the latest videos about gadgets and technology, subscribe to our YouTube channel.

CoinDCX, Binance Start 2023 with Cryptocurrency Awareness Program, Web3 Scholarship

Featured Video of the Day

Redmi Note 12 Pro+: all about the 200-megapixel camera




Source link

Leave a Reply

Your email address will not be published. Required fields are marked *

Back to top button