SECURITYTHE REGISTER
Google fixing Android lock screen bug that lets Gemini send SMS without a PIN
Google is addressing a security flaw in Android 16 that allows unauthenticated users to send SMS or WhatsApp messages via Gemini from the lock screen without a PIN. The bug, reported to The Register, enables physical attackers to bypass device authentication using a specific multi-touch gesture, with Google confirming a fix will deploy this week.
Mentioned
Related Signal
Adjacent reporting
- Apple rolls out iOS 26.4.2 to fix a flaw that allowed the FBI to access push notifications
- Apple fixes iOS bug that retained deleted notification data
- Apple Patches iOS Flaw That Stored Deleted Signal Notifications in FBI Forensic Case
- BeyondTrust Patches Critical Auth Bypass Flaws in Remote Support and PRA
- Apple fixes bug that allowed FBI to read deleted Signal messages