New Threat Research: Uncovering Adversarial LDAP Tradecraft

Read Threat Research


CVE-2022-22292 Used to Compromise Android 9,10,11, and 12 devices

Researchers from Kryptowire discovered a vulnerability, tracked as CVE-2022-22292, located within Android devices. The vulnerability resides in a pre-installed app that executes with system privileges on Samsung devices. Experts pointed out that the Phone app has an insecure component which allows local apps to perform privileged operations without any user interaction. This could give an attacker the ability to initiate a factory reset, make phone calls, install/uninstall apps, and weaken security controls. This has been rated as a high severity vulnerability and was reported to Samsung.

Analyst Notes

Samsung addressed this vulnerability in a patch released in February. Mobile applications are becoming a major target for threat actors due to the sensitive nature of the information that they may hold. It is important that all mobile users only download applications from trusted app stores. Users should also stay up to date on security patches and ensure they have an anti-virus software running to protect their devices.