NOTICE: Android Device Vulnerability

November 20, 2019

GW Information Technology (GW IT) has been informed of a vulnerability with the camera app on a variety of Android devices.

Who is at risk?

  • Anyone using an Android device that isn’t running September 2019 patches and updated camera app.

What does this exploit/allow an attacker to do?

  • Capture photos
  • Capture video w/audio
  • Record calls
  • Copy stored photos and video

We encourage all Android users to apply the latest security patches and updates, regardless of the camera app being used. Security patch information is generally visible in the Settings app on your device. Specific details of how to find this information does vary from device to device. Please consult carrier support for specific instructions.

Google and Samsung have already provided security patches and upgrades for camera apps. There are some Android device vendors who do not release security patches for older devices, which may make those devices vulnerable. If you encounter difficulty with patches or updates, please contact your Android device manufacturer for more information.

In the case of GW-issued Android phones, please apply the latest patch and app update. Further information will be shared in a separate communication as needed.

Remember, as a best practice, you should always keep your devices up-to-date with the latest patches and upgrades.

Questions? For questions or to report any problems, please contact GW Information Technology at 202-994-GWIT (4948), [email protected] or it.gwu.edu