Google researchers discover critical Android security flaw; Pixel, Samsung, Huawei, Xiaomi phones affected

Google’s Project Zero researchers have discovered a critical security flaw in its own Android that affected some popular smartphones across brands. Researchers claim the “zero-day” flaw was exploited in the real-world by Israel’s NSO Group, known for the Pegasus interception software.

The flaw affected Google’s recent Android 8.x and above versions. Interestingly enough, the bug was fixed in earlier iterations of Android (3.18, 4.4, 4.9) but resurfaced again.

According to Google researchers, the Android vulnerability affects the following phones: Samsung S7, Samsung S8 and Samsung 9, LG Oreo, Moto Z3, Oppo A3, Xiaomi Mi A1, Xiaomi Redmi Note 5 and Xiaomi Redmi 5A, Huawei P20, and Google’s own Pixel 2 with Android 9 and Android 10.