A critical vulnerability affecting Android phones powered by MediaTek chipsets has been discovered, allowing attackers to extract user data in less than 60 seconds. This alarming security flaw has a Common Vulnerabilities and Exposures (CVE) designation of CVE-2025-20435 and impacts an estimated 25% of Android devices, equating to approximately 875 million smartphones worldwide.
The vulnerability was uncovered by security researchers from Ledger’s Donjon Hacker Lab, highlighting the ongoing risks associated with mobile device security. MediaTek has confirmed that it provided a patch to address this vulnerability in January, but the extent of the impact raises concerns about the effectiveness of these updates and the speed at which users can implement them.
For those concerned about their device’s vulnerability, experts recommend checking the specific System on Chip (SoC) used in their smartphones. Forbes advises, “I would recommend searching Google or a dedicated resource such as GSMArena to find out precisely what SoC your smartphone uses, so as to determine your risk as soon as possible.” This guidance underscores the importance of user awareness in mitigating potential threats.
In a related development, Fairphone has begun rolling out Android 16 to the Fairphone 6 as of March 16, 2026. This new version includes features designed to enhance user security and experience, such as Force Group Notifications and Notification Cooldown, which help manage alerts more effectively. Additionally, Android 16 blocks risky actions during calls to prevent social engineering attacks, a growing concern in the realm of mobile security.
Fairphone’s initiative to provide timely updates demonstrates a commitment to user safety, with Android Central noting, “Fairphone is giving its users a smoother, safer phone experience and proving that quick, clean updates are possible for smaller manufacturers.” This contrasts sharply with the challenges faced by many users of devices affected by the MediaTek vulnerability, who may not receive timely updates or patches.
The landscape of Android security continues to evolve, with significant implications for millions of users. As the situation develops, it remains crucial for manufacturers and users alike to prioritize security measures and stay informed about potential vulnerabilities.
Details remain unconfirmed regarding the full extent of the vulnerability’s exploitation and the effectiveness of the patches provided by MediaTek. As the cybersecurity landscape shifts, further developments are expected to emerge, emphasizing the need for vigilance among Android users.