Google Closes Android Security Vulnerability Exploited by Hackers
Starting immediately, users with compatible devices can download the May 2025 Android Security Bulletin. It includes a patch for a font rendering flaw that allowed the execution of malicious code without user interaction.
Google has released the May security update for Android, addressing a total of 46 vulnerabilities in the smartphone OS. Attackers may have already actively exploited a particularly severe security flaw. Users need to update their devices to the latest version.
Critical Android Security Flaw Exploited by Hackers
The May 2025 Security Bulletin addresses several vulnerabilities in the Android system and framework, as well as Google Play updates. The most dangerous of these is identified as CVE-2025-27363 and affects the open-source program library FreeType. An error in text rendering can allow local malicious code to be executed without additional execution rights and without user interaction.
ADVERTISEMENT
Google warns: 'There are indications that CVE-2025-27363 may be exploited in a limited and targeted manner.' However, specific details about the attack methods or affected targets are not known. The vulnerability has a CVSS base score of 8.1, making it highly dangerous.
Error in Font Processing
The alert about the Android security flaw came in March 2025 from Facebook, which also provided evidence of active exploitation online. It is an out-of-bounds write error that occurs when processing TrueType GX and variable font files, allowing the injection of malicious code. The vulnerability affects only older FreeType versions prior to 2.13.1.
Users Must Install Current Security Patch
To address the vulnerabilities, the installation of the May 2025 Android security patch is required. It has been available since May 5 for compatible smartphone models. Installation requires at least Android 13. Older versions of the operating system no longer receive security updates from Google.
The post Google Closes Android Security Vulnerability Exploited by Hackers appeared first on TECHBOOK.
Hashtags
Try Our AI Features
Explore what Daily8 AI can do for you:
Comments
No comments yet...
Related Articles
Yahoo
28 minutes ago
- Yahoo
What is a Waymo car?
( — Waymo vehicles have been in headlines over the last few days after anti-immigration enforcement protestors set some of them on fire in Los Angeles. But what are they? A Waymo car is a fully autonomous, self-driving vehicle operated by the company Waymo, a Google subsidiary. It operates on a rideshare service application called Waymo One, which offers on-demand, self-driving transportation in select cities, according to How does ICE know who to deport? Waymo began in 2009 in San Francisco as an experiment and went on in 2016 to become a fully-operational robotaxi service in some major cities. 'The Waymo Driver is the embodiment of fully autonomous technology that is always in control from pickup to destination,' the company said on its website. 'Passengers don't even need to know how to drive. They can sit in the back seat, relax, and enjoy the ride with the Waymo Driver getting them to their destination safely.' Waymo cars are currently available in Phoenix, AZ, San Francisco, Los Angeles, and Austin, TX, according to its website. They are reportedly coming soon to Atlanta, GA, and Miami, FL. Copyright 2025 Nexstar Media, Inc. All rights reserved. This material may not be published, broadcast, rewritten, or redistributed.
Yahoo
an hour ago
- Yahoo
Threads Continues to See Strong Download Momentum in May
This story was originally published on Social Media Today. To receive daily news and insights, subscribe to our free daily Social Media Today newsletter. Threads continues to hold its place in the app download charts, with Meta's Twitter replicant remaining at 8th spot in the list, and seeing an increase in overall download volume in May. As you can see in this latest ranking data from AppFigures, Threads saw 23 million downloads across iOS and Android in May, which is up from 22 million April, and at the same level that the app saw in March. Threads is now up to 350 million monthly active users, and gaining quickly on X, which reported in March that it's now up to 600 million monthly actives, an increase of 50 million year-over-year. Though those figures are somewhat questionable, considering that X has also down 15% on overall European usage since Elon Musk took over at the app, as per its official DSA reporting data. As a private company, X is not obligated to share auditable usage data, but it does have to provide such for Europe, and given that its EU audience is down, it would be surprising if X is somehow gaining significant momentum in other markets, and not only replacing its lost EU users, but also exceeding its previous audience. But even so, Threads is clearly doing something right, as it continues to gain in download numbers, and attract more people to the app. The platform is increasingly putting more focus on real-time news, while it's also enhancing its live event elements, including sports, as it seeks to supplant X as the top platform for in-the-moment engagement. Looking at other app movements, TikTok remains popular, staying in the top three for downloads throughout the year thus far, and switching places back and forth with Instagram for second spot behind ChatGPT. Facebook and WhatsApp have also held their positions in the list, while Snapchat is also still clinging to the top 10. Though it is also interesting to consider Snap's relative challenges in this respect, by comparing the performance of these apps. One of Snapchat's key problems is that while it remains a key utility for younger audiences, it doesn't maintain that hold on older users, and as users age up, it loses them to other apps. That's somewhat reflected in the data, with Snapchat seeing strong download volume, but sitting on fewer users, at 900 million monthly actives, and 460 million daily users. IG, Facebook and TikTok have all surpassed the billion user milestone, and it's interesting to see Snap remaining at lower usage levels, despite relative download interest. It's another reminder of Snap's growth challenges, and how it needs to evolve in line with its audience. Error in retrieving data Sign in to access your portfolio Error in retrieving data Error in retrieving data Error in retrieving data Error in retrieving data
Yahoo
an hour ago
- Yahoo
Sobot Reveals "AI-First" Strategy for Delivering Human-like Customer Service
Reshaping AI-Powered Customer Service and CX with Five Pillars of Next-Gen AI NEW YORK, June 10, 2025 /PRNewswire/ -- Sobot, a leading AI customer contact solution provider, unveiled its "AI-First" strategy at a media launch event this month. The move elevates Sobot AI with five pillars, including Omnichannel AI, Scenario-Based AI, Multi-Faceted AI, Generative AI and Secure AI to create an experience-led, easy-to-use, and efficiency-driven solution. Sobot Aims to Deliver Intelligent yet More Human-like Service AI has quickly become central to digital transformation in customer service. According to MarketsandMarkets, the global AI-for-customer-service market was valued at USD 12.06 billion in 2024 and is projected to reach USD 47.82 billion by 2030. Yet 52% of customers prefer human interaction for its empathy, while another 42% favor a blend of AI and human support. While some customers find AI insufficiently human, its adoption in customer service is now irreversible. Customer service solution providers must therefore balance customer expectations with the power of AI. "Fed up with limited contextual comprehension, inflexible responses, and poor emotional perception, customers want their needs understood and met," said Yi Xu, CEO of Sobot. "Our 'AI-First' strategy doesn't just automate processes; it aims to provide intelligent but more human-like services." Highlight of Sobot's AI-First Strategy: Five Pillars of Next-Gen AI Omnichannel AI - Ensuring Seamless, Efficient Experience Across All Channels Sobot AI integrates websites, mobile apps, social platforms such as Facebook, Instagram and WhatsApp, plus email, phone calls and SMS. Beyond online chat, it includes AI voicebot that can handle inbound and outbound calls. Sobot AI also unifies and connects information of all channels, giving customers a seamless experience wherever they start. Scenario-Based AI - Providing Industry-Specific Solutions Sobot AI is never limited to fixed functions, it keeps upgrading and extending, making it suitable for various industries. Designed especially for retail and e-commerce, Sobot AI spans the entire purchase journey. It answers pre-sales inquiries 24/7, converting browsers into buyers; it sends personalized recommendations during checkout to increase the sales volume; it resolves post-sales issues quickly to boost customer satisfaction. Multi-Faceted AI - Supporting Customers, Agents and Administrators Sobot AI supports multiple roles during the process of customer service. For customers, Sobot AI Agent learns from the knowledge base to deliver accurate, humanized service. For human agents, Sobot AI Copilot suggests replies and drafts summaries, raising efficiency. For administrators, Sobot AI Insight supplies detailed dashboards to optimize operations. Generative AI - Combining Multiple Advanced LLMs and SLMs Powered by leading LLMs (Large Language Models) such as OpenAI and DeepSeek, Sobot AI boasts powerful generative capacity able to decompose knowledge, retrieve the most relevant content, and intelligently composes accurate responses. Sobot AI is also powered by several SLMs (Small Language Models), which is helpful to create industry-oriented solutions, enhancing the accuracy and professionalism of customer service. Secure AI - Guaranteeing Global Data Privacy and Compliance Sobot aligns its platform with country-specific regulations and holds a number of internationally recognized certifications in information, cloud, and system security. Regional data centers in the United States, Europe, Singapore, and other locations ensure reliable performance worldwide. Sobot is Committed to Reshaping Customer Service with Humanized AI Alongside its "AI-First" strategy, Sobot has refreshed its website, especially the AI Solution page so customers can easily learn more about the basic features, use cases, benefits, and more of Sobot AI. And just as what is shown in its website, Sobot's new generation of AI is committed to creating "experience-led, easy-to-use and efficiency-driven AI for CX". Xu added, "Our strategy prioritizes customer experience, but it is equally valuable for businesses. The five pillars are its cornerstone, yet their essence is humanization. Sobot will continue to practice this vision, helping more customers and companies reshape service through humanized AI." For more information, please visit View original content to download multimedia: SOURCE Sobot
