Samsung users should update their devices as soon as possible as the company's latest update includes a fix for a flaw that could allow hackers to gain access to your phone to remotely install malicious code on it. As reported by PCMag, the flaw in question (tracked as CVE-2025-21043) was first discovered last month and Apple pushed out a patch for it to iOS users with its 18.6.2 update. Now though, Samsung phones are receiving their own fix as part of a wider security update.
Realistically, it it unlikely that most users would be targeted with this particular attack but given that this is a critical vulnerability, it's important that all users update their phones to address the flaw. It’s always considered to be a good idea to keep an operating system up-to-date for this particular reason and at the same time, you want to careful about the apps that you download onto a phone.
Samsung’s notes on the security update state that “out-of-bounds Write in libimagecodec.quarm.so prior to SMR sept 2025 release 1 allows remote attackers to execute arbitrary code.” This basically means that there is an issue with a third party tool on Samsung devices used by messaging apps to look at images in a way that could allow hackers access.
WhatsApp's security team first discovered the vulnerability, which may affect over 3 billion users worldwide, making it a particularly attractive target for attackers. Meta, in turn, reported the bug to both Apple and Samsung last month. While Samsung doesn’t mention any other affected messaging apps in the security notes, that makes it even more important to download the security update on your phone. This bug affects all Samsung handsets running Android 13 or later, and iOS users should make sure that they’re running iOS 18.6.2 or later in order to stay protected.
How to keep your Galaxy phone safe from hackers
As with all of the best Android phones, the most important thing you can do to keep your Galaxy phone safe from hackers is to keep your operating system and apps up to date. The problem for Samsung users is that, when it comes to urgent fixes, the rollout tends to be more piecemeal. Unlike the instant, universal updates pushed to Pixels and iPhones, Galaxy patches roll out gradually by model, region, and carrier. In the meantime, many Galaxy users will be left twiddling their thumbs as One UI 8 trickles out.
If your phone is on Samsung’s monthly update schedule, the patch will reach you eventually. Just be sure to install it right away and reboot your device ASAP once it arrives. Even if your device comes from a manufacturer that doesn’t release updates often, don’t panic just yet: There are still plenty of steps you can take to safeguard your phone and the sensitive data on it.
Consider running one of the best Android antivirus apps since most are not only updated on a more frequent basis but also include useful extras like access to one of the best VPNs or a password manager to help protect your privacy and your credentials.
Whether you're scrolling on a phone, tablet, or computer, the simplest way to stay safe from hackers is by installing updates and security patches as soon as they’re available. Attackers love to prey on devices running outdated software. When you're shopping for a new phone, it’s easy to focus on screen size or storage, but security updates and how many years of support you get are just as important.
Follow Tom's Guide on Google News and add us as a preferred source to get our up-to-date news, analysis, and reviews in your feeds. Make sure to click the Follow button!
More from Tom's Guide
- Google just took down 224 malicious apps with 38 million installs in massive SlopAds fraud campaign — how to stay safe
- The TikTok ban saga appears to finally be over as reports suggest a deal has been done
- Fake Meta suspension warnings used in new malware campaign — how to protect your devices and your data
