An Android package, “Showcase.apk,” preinstalled on a significant portion of Pixel devices since 2017, possesses extensive system permissions enabling remote code execution and package installation. It fetches a configuration file via unsecured HTTP from a single US-based AWS domain, rendering it susceptible to tampering, while the combination of excessive privileges and insecure configuration exposes millions […] The post Critical Android Vulnerability Impacting Millions of Pixel Devices Worldwide appeared first on Cyber Security News.