Technology News
English Edition
  • Home
  • Mobiles
  • Mobiles News
  • Google to Fix Security Vulnerability on Pixel Phones That Could Allow Remote Access or Control: Report

Google to Fix Security Vulnerability on Pixel Phones That Could Allow Remote Access or Control: Report

A preinstalled system application called Showcase could be leveraged to inject malicious code or run spyware on Pixel phones, according to security firm.

Written by David Delima | Updated: 16 August 2024 14:08 IST
Google to Fix Security Vulnerability on Pixel Phones That Could Allow Remote Access or Control: Report

Google Pixel phones shipped since late 2017 reportedly contain the vulnerable app

Highlights
  • Google's Pixel phones shipped since 2017 contained a security flaw
  • A preinstalled app used for in-store demos could be misused by hackers
  • Google reportedly plans to remove the app, which is no longer in use
Advertisement

Google Pixel phones were shipped with an application that could potentially be misused by hackers to spy on users' smartphones, an investigation by three security companies has revealed. A hidden Android package on the company's handsets that was used to demonstrate features at a US telecommunications firm's stores contains a security vulnerability, according to security firm iVerify. Google has reportedly confirmed that the application in question, which is inactive by default, will be removed from Pixel phones in the future.

Google Pixel Phones Shipped With Vulnerable 'Showcase' Application

According to a report by cybersecurity firm iVerify, an insecure smartphone was detected at one of its clients, Palantir Technologies. When the handset in question was inspected, the security firm found an application called Showcase that was preinstalled on all Pixel phones.

The Showcase application was created by a firm to enable demos for Google Pixel phones at Verizon stores in the US, according to the company. While the vulnerable application is preinstalled on all of Google's smartphones sold since 2017, it is not enabled by default. Meanwhile, Gadgets 360 was unable to locate the Showcase app on the Pixel 8 review unit sent by the company.

The Showcase app runs at the system level, which allows it a greater level of access to a user's phone compared to applications installed via the Play Store. It is unclear why Google shipped an application on all Pixel phones, instead of including it on models that were required for in-store demos in the US.

While Pixel smartphones are widely considered to be some of the most secure Android phones, the vulnerability — if enabled — could allow attackers to perform a man-in-the-middle (MITM) attack, inject malicious code and execute it, or even run spyware on a user's phone, according to iVerify. The security firm states that Palantir now plans to phase out Android smartphones and transition to iPhone models over the coming years.

The security firm states that it provided Google with a vulnerability report as part of the latter's 90-day disclosure process, but did not receive a response from the company. In a statement to the Verge, a Google spokesperson said that the company had “seen no evidence of any active exploitation” of the Showcase app and that would be removed from all Pixel smartphones "in the coming weeks". 

Google Pixel 8

Google Pixel 8

  • REVIEW
  • KEY SPECS
  • NEWS
  • Design
  • Display
  • Software
  • Performance
  • Battery Life
  • Camera
  • Value for Money
  • Good
  • Smaller form factor makes it more comfortable to hold
  • Excellent and bright display
  • Cameras are still the best
  • Packed with AI features
  • Bad
  • Battery life is still not the best
  • Expensive
  • Tends to heat up under heavy load
Read detailed Google Pixel 8 review
Display 6.20-inch
Processor Google Tensor G3
Front Camera 11-megapixel
Rear Camera 50-megapixel + 12-megapixel
RAM 8GB
Storage 128GB, 256GB
Battery Capacity 4575mAh
OS Android 14
Resolution 1080x2400 pixels
Comments

For the latest tech news and reviews, follow Gadgets 360 on X, Facebook, WhatsApp, Threads and Google News. For the latest videos on gadgets and tech, subscribe to our YouTube channel. If you want to know everything about top influencers, follow our in-house Who'sThat360 on Instagram and YouTube.

Further reading: Google Pixel, Google, Cybersecurity
David Delima
David Delima
As a writer on technology with Gadgets 360, David Delima is interested in open-source technology, cybersecurity, consumer privacy, and loves to read and write about how the Internet works. David can be contacted via email at DavidD@ndtv.com, on Twitter at @DxDavey, and Mastodon at mstdn.social/@delima. More
Ola Electric Roadster Series EV Bikes Unveiled in India: All You Need to Know
Google Gemini 1.5 Pro AI Model Might Have Been Silently Updated for Gemini Advanced Users

Related Stories

Google to Fix Security Vulnerability on Pixel Phones That Could Allow Remote Access or Control: Report
Comment
Facebook Gadgets360 Twitter Share Tweet Snapchat LinkedIn Reddit Comment google-newsGoogle News
 
 

Advertisement

Featured
Follow Us
Latest Videos
More Videos
Tech News in Hindi
More Technology News in Hindi
Popular on Gadgets
Latest Gadgets
Popular Mobile Brands
#Trending Stories
  1. Flipkart Big Billion Days Sale 2024 Could Start on This Date
  2. Tecno Pova 6 Neo 5G With 108-Megapixel Camera Debuts in India: See Price
  3. Realme GT 7 Pro Teased to Get a Solid-State Button; Earlier Launch Hinted
  4. Samsung Galaxy S25 Ultra Renders Leak Online; Suggests Flatter Design
  5. Redmi Note 14 Series Teased to Come With IP68 Rating, Better Durability
  6. OnePlus 13 Allegedly Listed on Geekbench With This Unannounced SoC
  7. Vivo T3 Ultra Price Range, Specifications Revealed Ahead of Launch in India
  8. Google Play's App Access Risk Feature Will Keep You Safe From These Apps
#Latest Stories
  1. NXP Semiconductors to Invest Over $1 Billion in India Pushing R&D Efforts
  2. Vivo T3 Ultra Price Range, Key Specifications Revealed Ahead of September 12 Launch in India
  3. Google Rolls Out App Access Risk Feature to Keep Users Safe From Dangerous Apps: Report
  4. Standard Chartered Bank Announces Digital Custody Service for Bitcoin, Ether in UAE
  5. Microsoft-Backed G42 Introduces Nanda, a Hindi Large Language Model for India
  6. Tecno Pova 6 Neo 5G With MediaTek Dimensity 6300 SoC, 108-Megapixel Camera Launched in India
  7. Samsung Patent Application Hints at Wireless Charging Case for AR Glasses
  8. Samsung Galaxy Tab S10 Series Images, Specifications Leaked Ahead of Launch
  9. OnePlus 13 Allegedly Spotted on Geekbench With Unannounced Snapdragon 8 Gen 4 SoC
  10. OpenAI ‘Strawberry’ AI Model to Reportedly Be Released by the End of the Month
Gadgets 360 is available in
Follow Us
Download Our Apps
App Store App Store
Available in Hindi
App Store
© Copyright Red Pixels Ventures Limited 2024. All rights reserved.
Trending Products »
Latest Tech News »