Source URL: https://it.slashdot.org/story/25/03/01/019202/serbian-students-android-phone-compromised-by-exploit-from-cellebrite?utm_source=rss1.0mainlinkanon&utm_medium=feed
Source: Slashdot
Title: Serbian Student’s Android Phone Compromised By Exploit From Cellebrite
Feedly Summary:
AI Summary and Description: Yes
Summary: The report illustrates a concerning case of a zero-day exploit utilized by a surveillance vendor against a student critic of the Serbian government, highlighting the ongoing threats to information security in civil society. Notably, it underscores the significance of timely software updates to protect against exploitation.
Detailed Description: The report from Amnesty International reveals a troubling instance of surveillance state tactics, where a zero-day exploit sold by Cellebrite was used to compromise the phone of a student involved in protests against the Serbian government. Here are key points from the findings:
– **Zero-Day Exploit**: The report details the vulnerabilities that were exploited in the Linux kernel’s device drivers, particularly affecting USB hardware, which points to serious weaknesses in critical software components.
– **Specific Vulnerabilities Identified**:
– CVE-2024-53104: This vulnerability was patched in the February 2025 Android Security Bulletin.
– CVE-2024-53197 and CVE-2024-50302: These vulnerabilities were patched upstream in the Linux kernel but had not yet been incorporated into Android, emphasizing the lag in response time for OS vendors to implement critical patches.
– **Surveillance Techniques**: The attackers used an array of peripherals to connect to the target phone, allowing them to disclose kernel memory, which is a sophisticated technique indicating advanced capabilities of state-sponsored surveillance programs.
– **Spyware Involvement**: The investigation found traces of spyware, specifically NoviSpy, indicating that such tools were being employed to further intrude on the privacy of individuals critical of the government.
– **Call to Action for Users**: Given the sophistication of the attack, the report urges Android users to promptly install security patches to mitigate the risk of similar exploits.
This case exemplifies the intersection of technology and human rights, especially regarding the misuse of digital tools by state actors against dissenting voices. It highlights the necessity for enhanced security measures and timely updates in software to protect civil liberties and privacy in an increasingly monitored world. The implications are critical for professionals in security and compliance, emphasizing the importance of proactive strategies in mitigating vulnerability exploitation.