Daily Guardian UAEDaily Guardian UAE
  • Home
  • UAE
  • What’s On
  • Business
  • World
  • Entertainment
  • Lifestyle
  • Sports
  • Technology
  • Travel
  • Web Stories
  • More
    • Editor’s Picks
    • Press Release
What's On

Rêve Project Construction Reaches 79% Completion in Dubai

July 16, 2026

Abu Dhabi Maritime Awards 2026: Celebrate Marina Excellence

July 16, 2026

China approves Apple Intelligence for iPhones, with Alibaba, Baidu emerging as partners

July 16, 2026

Skullcandy serves Bose tuning and some peppy colors on its new Crusher 1080 ANC headphones

July 16, 2026

This AI doesn’t just translate languages, it invents brand-new ones

July 16, 2026
Facebook X (Twitter) Instagram
Finance Pro
Facebook X (Twitter) Instagram
Daily Guardian UAE
Subscribe
  • Home
  • UAE
  • What’s On
  • Business
  • World
  • Entertainment
  • Lifestyle
  • Sports
  • Technology
  • Travel
  • Web Stories
  • More
    • Editor’s Picks
    • Press Release
Daily Guardian UAEDaily Guardian UAE
Home » Google quietly fixed USB flaw that left over a billion Android devices exposed
Technology

Google quietly fixed USB flaw that left over a billion Android devices exposed

By dailyguardian.aeMarch 1, 20253 Mins Read
Share
Facebook Twitter LinkedIn Pinterest Email

In the first week of February, Google published its usual Android Security Bulletin, detailing security flaws that have been plugged to strengthen the platform safety. These flaws are usually declared once they have been fixed, except in special circumstances.

February is one of those rare situations for a kernel-level, high-severity flaw that was still being actively exploited at the time of the bulletin’s release. “There are indications that CVE-2024-53104 may be under limited, targeted exploitation,” says the release note.

The flaw was first reported by experts at Amnesty International, which describes it as an “out-of-bound write in the USB Video Class (UVC) driver.” The researchers add that since it’s a kernel-level exploit, it impacts overs over a billion Android devices, irrespective of the brand label.


Please enable Javascript to view this content

Since it’s a zero-day exploit, only the attackers know of its existence, unless security experts sense its presence, develop a fix with the platform’s team, and then widely release it for all affected devices. Two other vulnerabilities, CVE-2024-53197 and CVE-2024-50302, have been fixed at the kernel-level, but haven’t been completely patched at an OS-level by Google

The impact pool is vast

The pool of affected devices is the Android ecosystem, while the attack vector is a USB interface. Specifically, we are talking about zero-day exploits in the Linux kernel USB drivers, which allows a bad actor to bypass the Lock Screen protection and gain deep-level privileged access to a phone via a USB connection.

In this case, a tool offered by Cellebrite was reportedly used to unlock the phone of a Serbian student activist and gain access to data stored on it. Specifically, a Cellebrite UFED kit was deployed by law enforcement officials on the student activist’s phone, without informing them about it or taking their explicit consent.

Amnesty says the usage of a tool like Cellebrite — which has been abused to target journalists and activists widely — was not legally sanctioned. The phone in question was a Samsung Galaxy A32, while the Cellebrite device was able to break past its Lock Screen protection and gain root access.

“Android vendors must urgently strengthen defensive security features to mitigate threats from untrusted USB connections to locked devices,” says Amnesty’s report. This won’t be the first time that the name Cellebrite has appeared in the news.

Update your Android smartphone. ASAP!

The company sells its forensic analysis tools to law enforcement and federal agencies in the US, and multiple other countries, letting them brute-force their way into devices and extract critical information.

In 2019, Cellebrite claimed that it could unlock any Android or Apple device using its Universal Forensic Extraction Device. However, it has also raised ethical concerns and privacy alarms about unfair usage by authorities for surveillance, harassment, and targeting of whistleblowers, journalists, and activists.

A few months ago, Apple also quietly tightened the security protocols with iOS 18.1 update, with the intention of blocking unauthorized access to locked smartphones and preventing exfiltration of sensitive information.











Share. Facebook Twitter Pinterest LinkedIn Tumblr Email

Keep Reading

China approves Apple Intelligence for iPhones, with Alibaba, Baidu emerging as partners

Skullcandy serves Bose tuning and some peppy colors on its new Crusher 1080 ANC headphones

This AI doesn’t just translate languages, it invents brand-new ones

Don’t expect smartwatches and fitness bands with replaceable batteries anytime soon

South Korea wants to give every citizen free, unlimited access to its own AI chatbot

Your child can now get a free Spotify account with parental controls

Madden NFL 27 is coming to Apple Arcade next month, and it lets you run an NFL franchise from top to bottom

Apple now lets you pay for cellular iPads over 3 years, and it’s a sign of a pricey trend that won’t halt soon

Hate editing videos? This new AI app turns your camera roll into ready-to-post reels

Editors Picks

Abu Dhabi Maritime Awards 2026: Celebrate Marina Excellence

July 16, 2026

China approves Apple Intelligence for iPhones, with Alibaba, Baidu emerging as partners

July 16, 2026

Skullcandy serves Bose tuning and some peppy colors on its new Crusher 1080 ANC headphones

July 16, 2026

This AI doesn’t just translate languages, it invents brand-new ones

July 16, 2026

Subscribe to News

Get the latest UAE news and updates directly to your inbox.

Latest Posts

Don’t expect smartwatches and fitness bands with replaceable batteries anytime soon

July 16, 2026

South Korea wants to give every citizen free, unlimited access to its own AI chatbot

July 16, 2026

Your child can now get a free Spotify account with parental controls

July 16, 2026
Facebook X (Twitter) Pinterest TikTok Instagram
© 2026 Daily Guardian UAE. All Rights Reserved.
  • Privacy Policy
  • Terms
  • Advertise
  • Contact

Type above and press Enter to search. Press Esc to cancel.