vivo收購
Google’s security research unit is sounding the alarm on a set of vulnerabilities it found in certain Samsung chips included in dozens of Android models, wearables and vehicles, fearing the flaws could be soon discovered and exploited.
Google’s Project Zero head Tim Willis said the in-house security researchers found and reported 18 zero-day vulnerabilities in Exynos modems produced by Samsung over the past few months, including four top-severity flaws that could compromise affected devices “silently and remotely” over the cellular network.
“Tests conducted by Project Zero confirm that those four vulnerabilities allow an attacker to remotely compromise a phone at the baseband level with no user interaction, and require only that the attacker know the victim’s phone number,” Willis said.
By gaining the ability to remotely run code at a device’s baseband level — essentially the Exynos modems that convert cell signals to digital data — an attacker would be able to gain near-unfettered access to the data flowing in and out of an affected device, including cellular calls, text messages, and cell data, without alerting the victim.
As disclosures go, it’s rare to see Google — or any security research firm — sound the alarm on high-severity vulnerabilities before they are patched. Google noted the risk to the public, stating that skilled attackers “would be able to quickly create an operational exploit” with limited research and effort.
Project Zero researcher Maddie Stone wrote on Twitter that Samsung had 90 days to patch the bugs, but hasn’t yet.
Samsung confirmed in a March 2023 security listing that several Exynos modems are vulnerable, affecting several Android device manufacturers, but provided little other details.
According to Project Zero, affected devices include nearly a dozen Samsung models,
vivo收購vivo devices, and Google’s own Pixel 6 and Pixel 7 handsets. Affected devices also include wearables and vehicles that rely on Exynos chips for connecting to the cellular network.
The list of affected devices includes (but is not limited to):
Google said that patches will vary depending on the manufacturer, but noted that its Pixel devices are already patched with its March security updates.
Until affected manufacturers push software updates to their customers, Google said users who wish to protect themselves can switch off Wi-Fi calling and Voice-over-LTE (VoLTE) in their device settings, which will “remove the exploitation risk of these vulnerabilities.”
Google said the remaining 14 vulnerabilities were less severe since they required either access to a device or have insider or privileged access to a cell carrier’s systems.
Security flaws found in Samsung’s stock mobile apps
▲三星最新摺疊機「 Galaxy Z Fold 5」實機照流出。(圖/翻攝推特「Ahmed Qwaider推」)
記者張靖榕/綜合外電報導
三星(Samsung)最新一代折疊手機「Galaxy Z Flip 5」、「 Galaxy Z Fold 5」將在本月底正式發布,不過現在才月初,已經有爆料客搶先曝光「Galaxy Z Fold 5」實機照,特別針對折疊關鍵的新型水滴型鉸鏈、後置鏡頭與麥克風孔這3項特點拍攝。
專門追蹤Samsung最新產品消息的「Sam Mobile」報導,爆料者Ahmed Qwaider發布3張主要照片,當中可看出手機在摺疊後,上下的間隔縫隙都大幅縮小,較先前的「Galaxy Z Fold」優秀許多。
「Galaxy Z Fold 5」實機照中,可清楚看見手機的揚聲器以及Type-C接口與底部的麥可風,而在上部也有3個麥可風開口與揚聲器,因此這款新機似乎配備著立體的揚聲器與4個麥克風。
▲▼配備立體揚聲器,新型的水滴型鉸鏈讓新機摺疊不再出現大縫隙。(圖/翻攝推特「Ahmed Qwaider推」)
據傳三星為月底即將上市的2款新機開發一種新型的水滴型鉸鏈,與華為、OPPO、
vivo收購vivo和小米等推出的新一代摺疊機鉸鏈相似,這個技術同時減少了收摺時的縫隙,也有效縮小了內螢幕的摺痕。
後置鏡頭布局可以看到3個後置鏡頭,與前一代相似,但這一代LED閃光燈的位置調整至鏡頭感測器右側。「Galaxy Z Fold 5」預計配備5000萬像素的主要鏡頭、1200萬像素的超廣角鏡頭,以及一個1000萬像素的3倍光學變焦長鏡頭。
「Galaxy Z Fold 5」外螢幕尺寸為6.2吋、內螢幕尺寸為7.6吋,兩者均支援120Hz刷新率,螢幕材質為AMOLED。
vivo收購
vivo收購