Skip to main content
  1. Home
  2. Mobile
  3. News

Android bug allowed hackers to access phone cameras in the background

By

Facebook may be the least trusted company when it comes to online privacy, but it seems like Google is vying for the top spot. The company disclosed a new Android vulnerability that essentially allowed hackers to gain access to a smartphone’s camera. That’s even when the phone is locked.

The bug was actually discovered by Checkmarx and allowed hackers to bypass app permissions. Pixel phones were specifically affected, but it seems like the issue also affects phones from Samsung and other manufacturers too.

Recommended Videos

“Our team found that by manipulating specific actions and intents, an attacker can control the app to take photos and/or record videos through a rogue application that has no permissions to do so,” Checkmarx said in a blog post. “Additionally, we found that certain attack scenarios enable malicious actors to circumvent various storage permission policies, giving them access to stored videos and photos, as well as GPS metadata embedded in photos, to locate the user by taking a photo or video and parsing the proper EXIF data.”

Related

After the blog post went live, Google confirmed the existence of the bug, however, it also said that the bug is no longer present. In other words, if you have the latest security update on your phone, you don’t need to worry about hackers being able to access your camera. At least, not from this specific issue.

“The issue was addressed on impacted Google devices via a Play Store update to the Google Camera Application in July 2019. A patch has also been made available to all partners,” Google said in a statement to Checkmarx.

This isn’t the only bug related to camera access in recent weeks. Recently, a bug was discovered that allowed Facebook to access the iPhone’s camera in the background. After the bug was discovered Facebook released a statement saying that it had inadvertently introduced the bug when fixing another issue — and that there was no evidence of photos or videos being uploaded to Facebook because of the bug. Of course, whether that’s true or not, it doesn’t bode well for Facebook in general, which has been involved in scandal after scandal related to user privacy.

Topics
Christian de Looper
Christian de Looper
Former Digital Trends Contributor
Christian de Looper is a long-time freelance writer who has covered every facet of the consumer tech and electric vehicle…

Editors’ Recommendations

Pixel 9 and 8a owners will get a handy new battery feature in Android 16
A person taking the Google Pixel 9a out of a pocket.

Google has hinted at a dedicated Battery Health menu since Android 14 QPR2 Beta 2, more than two years ago — and now the feature is finally available for select users on Android 16 Beta 3. That's great news, but only if you have one of the most recent Pixel models. The feature is only coming to the Pixel 9 series and the Pixel 8a; even the Pixel 8 and Pixel 8 Pro (launched in late 2023) are ineligible.

Google confirmed this in an issue tracker thread: "The Battery Health Indicator feature is currently supported in Beta 3 on Pixel 8a and Pixel 9 products including 9 Pro Fold. Due to product limitations, this feature will not be available on older in-market Pixel devices."

Read more
Google just leaked images of the upcoming Android redesign
Design elements Google Material 3 Expressive.

Google is due to unveil its new "Material 3 Expressive" design system at I/O 2025 this month, but someone at the company accidentally published a blog post about it this week. It was promptly deleted but the Wayback Machine already archived it and the quick-thinking folks at 9to5Google saved the images as well.

The blog post itself was all about the research that went into the new design system for Android 16. Google spent three years carrying out various studies and experiments with over 18,000 participants, including:

Read more
Android’s desktop mode for phones is taking shape, and it looks familiar
Android 16 logo on Google Pixel 6a kept on the edge of a table.

Google’s mobile operating system comes with a hidden desktop mode that opens on an external screen, mimicking what you would get from a computing interface. However, it is buried within the developer mode, and it's far from polished to get any serious work done. 

The company, however, continues building a next-gen experience for Android’s native desktop mode. The overarching idea is to turn your phone and tablet into a desktop computing device. Mishaal Rahman, over at Android Authority, was able to enable this mode in the latest beta build of Android 16, though he warns that it might not be ready for the stable release in the coming months.

Read more