Skip to main content

Android bug allowed hackers to access phone cameras in the background

Facebook may be the least trusted company when it comes to online privacy, but it seems like Google is vying for the top spot. The company disclosed a new Android vulnerability that essentially allowed hackers to gain access to a smartphone’s camera. That’s even when the phone is locked.

The bug was actually discovered by Checkmarx and allowed hackers to bypass app permissions. Pixel phones were specifically affected, but it seems like the issue also affects phones from Samsung and other manufacturers too.

Recommended Videos

“Our team found that by manipulating specific actions and intents, an attacker can control the app to take photos and/or record videos through a rogue application that has no permissions to do so,” Checkmarx said in a blog post. “Additionally, we found that certain attack scenarios enable malicious actors to circumvent various storage permission policies, giving them access to stored videos and photos, as well as GPS metadata embedded in photos, to locate the user by taking a photo or video and parsing the proper EXIF data.”

Please enable Javascript to view this content

After the blog post went live, Google confirmed the existence of the bug, however, it also said that the bug is no longer present. In other words, if you have the latest security update on your phone, you don’t need to worry about hackers being able to access your camera. At least, not from this specific issue.

“The issue was addressed on impacted Google devices via a Play Store update to the Google Camera Application in July 2019. A patch has also been made available to all partners,” Google said in a statement to Checkmarx.

This isn’t the only bug related to camera access in recent weeks. Recently, a bug was discovered that allowed Facebook to access the iPhone’s camera in the background. After the bug was discovered Facebook released a statement saying that it had inadvertently introduced the bug when fixing another issue — and that there was no evidence of photos or videos being uploaded to Facebook because of the bug. Of course, whether that’s true or not, it doesn’t bode well for Facebook in general, which has been involved in scandal after scandal related to user privacy.

Christian de Looper
Christian de Looper is a long-time freelance writer who has covered every facet of the consumer tech and electric vehicle…
Google boosts Android security against unknown tracking devices
Unknown tracker alert for Android.

Google is adding a couple of new features to Android’s safety alert system that will help users find unknown trackers moving with them. The new features cover all tags and tracking devices that support Google’s Find My Device service for locating lost hardware.

The first one is Find Nearby. This one will help users locate any hidden tracker. For example, if your Android phone flashes an unknown tracker alert, you can check for its presence using the Play Sound feature.

Read more
Here’s how your Android phone could help stop your motion sickness
Someone holding the Google Pixel 9 with the screen on.

Motion sickness — also called kinetosis — is a common problem. In fact, as many as one in three people have felt sick while in a vehicle. For those who suffer from it, reading in the car is practically impossible.

Apple introduced a feature that helps those prone to motion sickness use their phones without the accompanying nausea. Now, Google is working on a similar feature for Android phones.

Read more
This phone highlights what Google and Samsung need to fix with their cameras in 2025
Oppo Find X8 Pro laying flat on a table.

When companies release new smartphones, they usually call out a specific camera specification or two. For the Galaxy S24 Ultra, Samsung calls out the 200-megapixel main camera as well as the 5x telephoto, while Apple focused on its 48MP Fusion camera, and Google made bold claims about the power of its 5x telephoto zoom.

However, dive deeper, and you’ll often find that these flashy cameras are paired with other lower-resolution sensors. For some companies, this isn’t a significant problem, and Google has proven that you can work wonders using AI and algorithms, even when the hardware doesn’t match up.

Read more