Samsung has released an update to the Galaxy Store app to fix vulnerabilities that could potentially allow malicious sources to install apps without user permission. The research team reportedly found two vulnerabilities in the Galaxy Store. These vulnerabilities only affect phones running Android 12 or earlier. Android 13 users are not affected. Users can open the Galaxy Store on their phones, download and install the latest version of the Galaxy Store app version 220.127.116.11.
The report states that a pre-installed blush app or a malicious hyperlink in Google Chrome on Galaxy phones running Android 12 bypasses Samsung’s URL filter and installs any app available on the Galaxy Store. Further, they even launch an attacker-controlled webview. Notably, these vulnerabilities only affect Galaxy phones running Android 12, while phones running Android 13 are safe.
Hence, in order to fix these bugs, Samsung has released an updated version of the Galaxy Store app (version 18.104.22.168). Users can go to the Galaxy Store settings on their phones and download and install the latest version of the app. Samsung has rated the aforementioned vulnerabilities as moderate risks.
Previously, the Galaxy Store was reported to have distributed malicious apps that requested excessive permissions, including phone access. In December 2021, various clones of Showbox movie piracy apps available on the Galaxy Store were found to infect devices with malware. Tipster Max Weinbach has reported a similar type of issue previously found on Huawei phones. He shared that the installation of Showbox-based apps from the Galaxy Store was stopped by a Google Play Protect warning. At least five Showbox-based applications have been infected with dangerous malware.
CoinDCX, Binance Start 2023 with Cryptocurrency Awareness Program, Web3 Scholarship
Featured Video of the Day
Redmi Note 12 Pro+: all about the 200-megapixel camera