Here is an updated, reformulated version of the text – I kept the meaning, but presented it in a new way:
Google specialists reported that they have identified more than a hundred vulnerabilities in Android – this is stated on the project’s website.
In a December bulletin, the company’s engineers warned users about security problems in the Android Open Source Project. In total, Google employees and independent researchers found 107 vulnerabilities in the operating system and prepared updates to fix them.
Among the most serious, specialists highlighted CVE-2025-48633 and CVE-2025-48572. Both are related to privilege escalation and unauthorized access to Android Framework data, and also allow remote attacks on devices. It is noted that attackers have already exploited these vulnerabilities.
The Hacker News notes that Google traditionally does not disclose details about the nature of attacks, exploitation methods, or possible connections between the vulnerabilities discovered. “Who is behind the attacks remains unknown,” the journalists write.
The company assured that it has prepared the necessary patches. The first users will be able to install updates starting December 5th.
At the end of November, Acronis experts reported that malware creators began using fake pornographic resources to lure users to them and carry out attacks.
