Skip to content

January 29, 2016

LG just fixed a bug that left 10 million G3 smartphones vulnerable

by John_A

lg g3 aa (2 of 22)

Last Thursday, Cynet revealed that their researchers, in collaboration with BugSec, had discovered a pretty serious vulnerability affecting LG G3 smartphones. They let LG know about the issue prior to publicizing it, and the company reacted quickly. A patch is now available that closes the data-theft hole, and LG is encouraging all G3 owners to update their devices as soon as possible.

The bug resides in a particular app called Smart Notice that comes pre-installed on LG G3 smartphones. The notification platform serves to ferry a variety of relevant information to users, but what it failed to do was vet data before presenting it. Researchers discovered it was possible to manipulate data in such a way that malicious code could be executed remotely.


lg-pay-whitecard_3_3See also: LG wants to replace all your credit cards with White Card, coming at MWC5

“The vulnerability can easily lead to authentic phishing attacks and to a full denial of service (DOS) on the device,” wrote Cynet. Since the app is pre-installed, the number of affected devices is estimated to be a staggering 10 million worldwide.

For those interested, Ars Technica has composed a more comprehensive write-up detailing the workings of this exploit and the two ways researchers were able to compromise devices through the bug. In the meantime, if you’ve got an G3 or know someone who does, better get that thing updated pronto.

What are your thoughts regarding this vulnerability and the way LG handled it? After the (false?) scare with the Linux bug earlier this month, it’s always good to hear about patches that make our devices and sensitive information safer and more secure. As always, let us know your thoughts and opinions in the comments below!

Next: Best Android phones (January 2016)

Read more from News

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out /  Change )

Google photo

You are commenting using your Google account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Connecting to %s

Note: HTML is allowed. Your email address will never be published.

Subscribe to comments

%d bloggers like this: