• Latest
  • All
  • How To
Hidden Security Threat: Google Pixel Phones Compromised by Pre-Installed App

Report: Millions of Google Pixel Users Vulnerable to Hacking Due to Pre-Installed App

August 18, 2024
Voter Verification Portal Offline Indefinitely for System Maintenance

IEBC Portal Shutdown for Undisclosed Maintenance Period

July 6, 2025
Infinix Note 50 Pro x Java House Collab

Infinix Teams Up with Java House to Launch Note 50 Pro Series

July 4, 2025
Instagram threads

Instagram Threads Rolls Out Direct Messaging in Major Feature Update

July 4, 2025
Infinix Hot 60i Pre-order

Infinix Hot 60i Now Available for Pre-Order in Kenya

July 4, 2025
DHgate Tablet Cases deals
Windows

Microsoft’s Windows Usage Slumps as Macs, Linux, and Mobile Take Over

July 4, 2025
Microsoft

Microsoft Slashes 9,100 Jobs in Biggest Layoffs Since 2023

July 4, 2025
NASA

NASA Brings Space Missions to Netflix at No Extra Cost

July 3, 2025
ios 26-facetime

iOS 26 May Pause Video if You Start Undressing on FaceTime

July 3, 2025
apple iphone foldable

Apple Begins Testing Its First Foldable iPhone

July 3, 2025
Mobile Data

Kenya Draws More Tourists as Mobile Data Roaming Soars

July 3, 2025
Axian Telecom Considers Full Acquisition of Jumia

Axian Telecom Is Plotting a Full Buyout of Jumia

July 3, 2025
Cable TV

Kenya’s Cable TV Market Rebounds with 31.5% Growth

July 3, 2025
Techweez | Tech News, Reviews, Deals, Tips and How To
  • News
  • Entertainment
  • Reviews
  • Features
  • Editorial
No Result
View All Result
Techweez | Tech News, Reviews, Deals, Tips and How To
  • News
  • Entertainment
  • Reviews
  • Features
  • Editorial
No Result
View All Result
Techweez | Tech News, Reviews, Deals, Tips and How To
No Result
View All Result

Report: Millions of Google Pixel Users Vulnerable to Hacking Due to Pre-Installed App

Sakwa Kombo by Sakwa Kombo
August 18, 2024
in News
Reading Time: 2 mins read
329
0
Hidden Security Threat: Google Pixel Phones Compromised by Pre-Installed App

Pixel phone owners have another concern that is separate from the phone’s network performance issues. Millions of Google Pixel devices, shipped since September 2017 to date, are vulnerable to cyberattacks due to a security flaw in a pre-installed app. A security vulnerability was discovered on an Android device used by Palantir Technologies. This discovery lead to an investigation involving iVerify and Trail of Bits. The two teams identified a pre-installed application, Showcase.apk, as the source of the vulnerability.

“It appears that Showcase.apk is preinstalled in Pixel firmware and included in Google’s OTA image for Pixel devices,” state iVerify. “The app is part of the firmware image, so millions of Android Pixel phones worldwide could have this application running at the system level,” iVerify added in a recent post.

The vulnerable “Showcase.apk” application was developed by Smith Micro, a software company based in the Americas and Europe. Smith Micro specializes in remote access, parental control, and data-clearing software.

This app compromises Pixel device’s security, leaving them susceptible to hacking attempts, including man-in-the-middle (MITM) attacks and spyware infiltration. Showcase.apk possesses extensive system permissions, enabling it to execute code remotely and install applications without user consent.

The application downloads a configuration file from a single US-based, AWS-hosted domain over unsecured HTTP. This dependency on unsecure HTTP creates a significant security vulnerability, as the file can be intercepted and modified, potentially allowing malicious code execution on the device.

Vulnerable Pixel App Can’t Be Uninstalled

Cybercriminals can take advantage and inject malicious code and dangerous spyware. Further, vulnerabilities in the app’s infrastructure can be exploited to execute code or shell commands with system privileges on Android devices to take over devices to perpetrate cybercrime and breaches.

Unfortunately, at this time, removing the app is not possible through a user’s standard uninstallation process. Google has yet to release a security patch to address the vulnerability.

READ: Android’s August Security Update Tackles Critical Vulnerabilities

The Showcase.apk application is not activated by default, however, it can be enabled through various methods, including physical access to the device. iVerify researchers successfully enabled the app using one such method. The researchers found it puzzling “Why Google installs a third-party application on every Pixel device when only a very small number of devices would need the Showcase.apk,”

Tags: AndroidCybercrimeCybersecurityGoogleGoogle Pixel
SendShare190Tweet119
Sakwa Kombo

Sakwa Kombo

My Bio is in my written articles.

Related Posts

DeepSeek_vs_ChatGPT

Hackers Build Malware That Tries to Reprogram AI Security Tools

July 1, 2025
tackling Bank Fraud, Sextortion, and Ransomware in Kenya

Kenya Facing Rise in Cyberthreats from Bank Fraud, Sextortion, and Ransomware

July 1, 2025
Kenya cyber threats 2025

Kenya Detects Over 2.5 Billion Cyber Threats in Three Months

June 30, 2025
google gmail

Google Rolls Out AI Cleanup Tool on Web for Messy Gmail Inboxes

June 30, 2025
Subscription Nuisance: Gmail's New Tool Arrives in Kenya

Gmail Now Lets You See and Cancel All Your Email Subscriptions

June 29, 2025
Google Ask Photos

Google Relaunches Ask Photos with Faster, Smarter AI Search

June 27, 2025

Latest

Voter Verification Portal Offline Indefinitely for System Maintenance

IEBC Portal Shutdown for Undisclosed Maintenance Period

July 6, 2025
Infinix Note 50 Pro x Java House Collab

Infinix Teams Up with Java House to Launch Note 50 Pro Series

July 4, 2025
Instagram threads

Instagram Threads Rolls Out Direct Messaging in Major Feature Update

July 4, 2025
Infinix Hot 60i Pre-order

Infinix Hot 60i Now Available for Pre-Order in Kenya

July 4, 2025
Windows

Microsoft’s Windows Usage Slumps as Macs, Linux, and Mobile Take Over

July 4, 2025
Microsoft

Microsoft Slashes 9,100 Jobs in Biggest Layoffs Since 2023

July 4, 2025

Best devices

budget smartwatches 2025

Best Budget Smartwatches To Buy in Kenya 2025

February 13, 2025

Best Infinix Smartphones To Buy in Kenya 2024

February 13, 2025

Best Laptops for Battery Life in 2024

August 21, 2024

Best “Battery Warrior” Smartphones To Buy in 2024

August 22, 2024

IEBC Portal Shutdown for Undisclosed Maintenance Period

July 6, 2025

Infinix Teams Up with Java House to Launch Note 50 Pro Series

July 4, 2025

Techweez is a fast growing influential source of technology news, reviews and analysis by leading tech geeks in the industry.

Follow Us

Editorials

Abductions and Arrests! Kenyan Government’s Fear and Hate of X Users Makes No Sense

Actors and Film Crews Are Worried About Veo 3 Taking Their Jobs

Samsung QLED TVs Now Officially Certified for Real Quantum Dot Technology

Trump’s Tariffs Will Be the End of Affordable Tech

5 Ways to Prep Your Tech for Resale

The Weaponization of PDFs: How Cybercriminals Are Exploiting a Trusted Format

More News

NASA Brings Space Missions to Netflix at No Extra Cost

iOS 26 May Pause Video if You Start Undressing on FaceTime

Apple Begins Testing Its First Foldable iPhone

Kenya Draws More Tourists as Mobile Data Roaming Soars

Axian Telecom Is Plotting a Full Buyout of Jumia

Kenya’s Cable TV Market Rebounds with 31.5% Growth

  • Terms Of Use
  • Techweez Brand
  • Privacy & Policy
  • Contact Us

© 2024 Techweez - Palahala Media Group may earn a commission when you buy through links on our sites.
A Palahala Media Group Brand. All rights reserved.
.

Welcome Back!

Login to your account below

Forgotten Password?

Retrieve your password

Please enter your username or email address to reset your password.

Log In

Add New Playlist

Techweez | Tech News, Reviews, Deals, Tips and How To
Crunchy Cookies 🍪 Ahead!

Hey there! Just a heads-up: we're big fans of cookies - both the digital and edible kind! 🍪 We use our cookies and some from third parties to ensure your browsing experience on our site is smooth sailing and secure.

 

But wait, there's more! We also use cookies to gather stats and insights on how you navigate our site. It's like getting a behind-the-scenes peek at your digital adventures!

 

Don't worry, you're in control. You can adjust your cookie settings anytime to suit your preferences. Feeling curious? Dive into our Privacy Policy for all the juicy details. Happy browsing! 🚀

Functional Always active
Listen, this legal stuff is about as exciting as watching paint dry. But it basically says we only use your stuff for what you asked us to do, and nobody else gets to peek!
Preferences
The technical storage or access is necessary for the legitimate purpose of storing preferences that are not requested by the subscriber or user.
Statistics
It's those sneaky cookie crumbs websites leave behind to count visitors, like counting ants at a picnic! Totally harmless, just for fun facts. The technical storage or access that is used exclusively for anonymous statistical purposes. Without a subpoena, voluntary compliance on the part of your Internet Service Provider, or additional records from a third party, information stored or retrieved for this purpose alone cannot usually be used to identify you.
Marketing
Hey there! Just letting you know we use some fancy gizmos to remember your preferences. This way, we can show you ads that are, well, not completely bananas.
Manage options Manage services Manage {vendor_count} vendors Read more about these purposes
Make cookies
{title} {title} {title}
Techweez | Tech News, Reviews, Deals, Tips and How To
Crunchy Cookies 🍪 Ahead!
To provide the best experiences, we use technologies like cookies to store and/or access device information. Consenting to these technologies will allow us to process data such as browsing behavior or unique IDs on this site. Not consenting or withdrawing consent, may adversely affect certain features and functions.
Functional Always active
Listen, this legal stuff is about as exciting as watching paint dry. But it basically says we only use your stuff for what you asked us to do, and nobody else gets to peek!
Preferences
The technical storage or access is necessary for the legitimate purpose of storing preferences that are not requested by the subscriber or user.
Statistics
It's those sneaky cookie crumbs websites leave behind to count visitors, like counting ants at a picnic! Totally harmless, just for fun facts. The technical storage or access that is used exclusively for anonymous statistical purposes. Without a subpoena, voluntary compliance on the part of your Internet Service Provider, or additional records from a third party, information stored or retrieved for this purpose alone cannot usually be used to identify you.
Marketing
Hey there! Just letting you know we use some fancy gizmos to remember your preferences. This way, we can show you ads that are, well, not completely bananas.
Manage options Manage services Manage {vendor_count} vendors Read more about these purposes
Make cookies
{title} {title} {title}
No Result
View All Result
  • News
  • Reviews
  • Features
  • Editorial
  • Automotive
  • Entertainment

© 2024 Techweez - Palahala Media Group may earn a commission when you buy through links on our sites.
A Palahala Media Group Brand. All rights reserved.
.