Google Pixel and Pixel XL’s well-received camera could be allowing third-party apps to track each user individually. Google recently identified the security loophole on the smartphones with a fix already in the works.
Each smartphone’s built-in front-facing camera has a unique serial number, which means that apps could potentially use this number to track and identify individual phones. Since the serial number is unique for each phone, the data could present a security and privacy issue, according to a post on the Android Open Source Project (AOSP). Third-party apps could potentially use the serial number, stored in the phone’s system, to accurately track — and advertise to — individual users.
Google has already identified the issue and is already using software to block apps from accessing the camera’s serial number. While the patch has already been written and tested, it’s unclear when the security fix will be available for download.
Alex Klyubin, a senior software engineer at Google, wrote on the AOSP website that the camera’s serial number is stored in the system. The fix, he writes, makes that serial number still available to the smartphone’s operating system, but hides that data from any third-party apps installed on the phone.
Google typically releases security updates every month — according to Verizon, some Pixel and Pixel XL phones are expected to have access to January updates as early as Tuesday.
The first phones made by Google, both boast stellar performance and a superb camera, earning a Digital Trends Editor’s Choice. While the smartphones were highly anticipated, Google has continued to update the phones from fixing additional security issues to correcting a lens flare with software.