Millions of Android devices suffer from serious vulnerabilities because of the following apps-Information Technology

Recently, the Microsoft 365 Defender research team discovered 4 critical vulnerabilities on Android, affecting millions of devices.

Specifically, the vulnerability allows hackers to perform remote or local attacks, taking advantage of system privileges to steal sensitive information of users, such as audio, camera access, etc. location, sensor data and memory.

Currently the vulnerabilities (CVE-2021-42598, CVE-2021-42599, CVE-2021-42600 and CVE-2021-42601) have been fixed by developer MCE Systems (Israel). There is no evidence that these vulnerabilities are being exploited in the wild.

According to Microsoft, most of the affected applications are pre-installed on the phone, such as Mobile Klinik Device Checkup, Device Help, MyRogers, Freedom Device Care, Device Content Transfer… In particular, some vulnerabilities still affect affect the above applications iOS.

In addition, the company also recommends that users uninstall the application package “com.mce.mceiotraceagent” (if available), an application commonly installed by mobile phone repair shops.