Oversicured has explained in its report how he has detected more than a dozen flaws in the Xiaomi device. These flaws are spread in various system components and already installed apps, so that hackers can steal users’ private data and sensitive data of bank details. Explain accurately, Xiaomi devices include these possible weaknesses within the Settings App and Getapps Store, Xiaomi’s pre -installed app marketplace.
Flaws affect both MIUI and Hyperos. Those who do not know, let them know that Hyperos is a rebranded version of Xiaomi’s current MIUI. The entire list of affected apps is given below, but talk about some popular apps, these include Xiaomi’s Gallery, Mi Video and Settings apps. Interestingly, some weaknesses originate from the patching of Xiaomi’s AOSP (Android Open Source Project) apps, indicating the need for deep testing and security solution during patching process.
The Security firm said in its report that “Receives and services with arbitrary activities system privileges due to Xiaomi’s flaws, the theft of arbitrary files with system privileges, the disclosure of arbitrary files, phones, settings and Xiaomi account data was carried out.”
One of the large flaws discovered may also allow hackers to leak information about Bluetooth devices, connected Wi-Fi networks and emergency contacts.
The oversicoids revealed the flaws to Xiaomi within the 5 -day time limit in late April 2023. At present, there is no official confirmation from Xiaomi regarding the patch. However, Xiaomi’s track record to fix the flaws immediately is good, as the company also immediately fixed some of the flaws detected by Microsoft.
Till then, if you keep the Xiaomi device, you can take care of some things, such as keep your device updated on the latest security patch, for which you can visit the ‘Instrument Replace’ tap inside the phone’s settings. In addition, download and install the apps only from the trusted store.
