The Indian Computer Emergency Response Team (CERT-In), which is under the Ministry of Electronics & Information Technology, issued a warning on Friday regarding multiple vulnerabilities in Android. These vulnerabilities could potentially allow an attacker to access sensitive information, gain elevated privileges, and cause denial-of-service (DoS) conditions on the targeted system. The affected software includes Android versions 12, 12L, 13, and 14.
"Multiple vulnerabilities have been reported in Android which could be exploited by an attacker to obtain sensitive information, gain elevated privileges, and cause a denial of service condition on the targeted system," said the CERT-In advisory.
According to the cyber agency, these vulnerabilities exist in Android due to flaws in the Framework, System, Google Play system updates, Kernel, Arm components, MediaTek components, Imagination Technologies, and Qualcomm closed-source components.
CERT-In advised users to apply appropriate updates when made available by the respective OEMs (original equipment manufacturers).
Last week, CERT-In issued a warning about a vulnerability in Checkpoint Network Security gateway products. This vulnerability could allow hackers to compromise users' data.
According to the advisory by the national cyber-security agency, attackers can exploit the vulnerability to access specific information on internet-connected gateways that are configured with IPSec VPN, remote access VPN, or mobile access software blades.
Meanwhile, India's government has directed Telecom Service Providers (TSPs) to block incoming international spoofed calls. The TSPs, in collaboration with the Department of Telecommunications (DoT), have implemented a system to identify and prevent these calls from reaching Indian telecom subscribers.
The Ministry of Communications has issued a statement warning that fraudsters are making international spoofed calls using Indian mobile numbers to deceive Indian citizens and commit cyber-crime and financial frauds. These fraudulent calls may seem to come from within India but are actually made by cyber-criminals located abroad who manipulate caller identification.
The ministry has reported that these calls have been misused in recent cases involving fake digital arrests, FedEx scams, drugs/narcotics in couriers, impersonation of government and police officials, and instances of mobile number disconnections by DoT/TRAI officials.
ALSO READ: How to unlock iPhone if you forgot passcode? An easy guide
Inputs from IANS
