Google Emergency Update: Patch for 120 Android Vulnerabilities

Google has released a critical security update for Android devices, patching 120 security flaws—including two zero-day exploits that were already being actively exploited. The September 2025 Security Bulletin warns of targeted attacks that can execute malicious code without any user interaction. All Android users should update immediately.

The patch comes at a critical time: 2025 is recording a dramatic increase in sophisticated malware on Android devices. Kaspersky reports a quadrupling of banking Trojans, while Android malware overall has increased by 151 percent.

Advertisement: Speaking of Android security: Would you like to secure your smartphone significantly better in just a few minutes? A free guide shows the 5 most important protective measures—step by step, without expensive additional apps, with clear checklists for updates, permissions, and vetted apps. Reliably protect WhatsApp, online banking, and shopping from data thieves. Get the free Android Security Package now.

Actively Exploited Zero-Days Threaten Millions of Users

The vulnerabilities CVE-2025-38352 and CVE-2025-48543 are particularly explosive, as they are already being used in targeted espionage campaigns. These zero-day exploits allow attackers to gain elevated system privileges and completely take over devices.

• CVE-2025-38352 affects the Android framework and can give malicious apps deep device access.

• The second flaw (CVE-2025-48543) weakens the Android runtime environment. Google's Threat Analysis Group discovered the kernel vulnerability and suspects its use in professional spyware attacks against journalists and government officials.

In parallel, Samsung is closing a separate zero-day flaw (CVE-2025-21043) that is also actively exploited. Security experts warn that attackers often combine such vulnerabilities—one grants access, the other escalates privileges for permanent surveillance.

Alarming Threat Landscape: 600 Percent More SMS Attacks

The current zero-days are just the tip of the iceberg. SMS-based phishing attacks exploded by over 600 percent in 2025. These "Smishing" attacks use clever social engineering tricks to lure users into installing disguised malicious apps.

Particularly insidious: Cybercriminals are increasingly managing to infiltrate the official Google Play Store. Nevertheless, the main risk remains with apps from unofficial sources—these are 50 times more likely to be infected with malware. The Zimperium Threat Report 2025 identifies side-loaded apps and SMS attacks as the primary dangers.

Advertisement: 600 percent more SMS phishing in 2025? Here's how not to fall into the Smishing trap. The free guide explains which settings you should activate immediately, how to check links, keep permissions under control, and avoid risky side-loads—ideal for beginners. Download the free guide: 5 Protective Measures for Your Android.

System Protection Is Not Enough: These Antivirus Apps Help

Google Play Protect alone is no longer sufficient against the new threats. Security experts recommend additional protection through specialized Android antivirus solutions. Top-rated security suites in 2025 are Bitdefender Mobile Security, Norton Mobile Security, and Avast Mobile Security.

These applications offer real-time malware scanning, web protection against phishing, and anomaly detection for suspicious app activity. Additionally, users should follow basic security rules: only install apps from the Play Store, critically check permissions, and activate strong authentication.

Google's Counter-Attack: Tougher Rules for Developers

Google is reacting to the threat landscape with tightened ecosystem rules. Starting in 2026, all Android app developers—even those outside the Play Store—must be verified. This measure is intended to make anonymous malware distribution more difficult.

Stricter Play Store guidelines have been in effect since August 2025: New apps must use the latest Android API levels to ensure modern security features. These systematic changes demonstrate Google's strategy to establish security as a non-negotiable core element.

However, the continuous discovery of actively exploited zero-days underscores one thing: The fight for Android security is an unrelenting arms race. Users must remain vigilant and install updates immediately—the next few months will show whether Google's tougher measures can stop the attackers.

@ boerse-global.de