Chinese tech giant Huawei patched nearly 300 vulnerabilities in its HarmonyOS operating system in 2022
Huawei is rewarding zero-click attacks that result in arbitrary code execution with prizes of up to €1 million through its HarmonyOS bug bounty programme. A maximum of €120,000 can be paid to researchers for new lockscreen bypass techniques.
Until the US government prohibited American companies from supplying software and technology to the Chinese company in 2019, Huawei smartphones and other gadgets relied on the Android operating system.
Later on in the year, Huawei announced HarmonyOS, a new operating system that runs on a variety of gadgets, including mobile phones, tablets, smart TVs, wearable technology, and car infotainment systems.
Huawei has a bug bounty programme with high payouts for severe vulnerabilities and exploit chains because the business is conscious that the operating system needs to be secure in order to compete with Android and iOS.
In comparison, roughly 800 vulnerabilities were patched in Android in 2022, according to data from CVE Details. However, Android is far more popular than HarmonyOS, which means it gets more scrutiny from security researchers.
According to a SecurityWeek research, HarmonyOS had more than 290 security holes addressed in 2022, including roughly 100 that affected third-party libraries. The information is taken from the company’s monthly security advisories from the previous year.
Almost twenty vulnerabilities have been classified as “critical,” while 94 have been classified as “high.”
These flaws can be used for privilege escalation, remote code execution, information gathering, and denial-of-service (DoS) attacks.
Suggest an edit to this article
Remember, CyberSecurity Starts With You!
- Globally, 30,000 websites are hacked daily.
- 64% of companies worldwide have experienced at least one form of a cyber attack.
- There were 20M breached records in March 2021.
- In 2020, ransomware cases grew by 150%.
- Email is responsible for around 94% of all malware.
- Every 39 seconds, there is a new attack somewhere on the web.
- An average of around 24,000 malicious mobile apps are blocked daily on the internet.
- Google Open-Source Vulnerability Scanning Tool - 18 January 2023
- Polymorphic Malware Produced by ChatGPT - 18 January 2023
- Russian Hackers Repurpose Decade-Old Malware Infrastructure to Deploy New Backdoors - 8 January 2023
English
Afrikaans
Albanian
Amharic
Arabic
Armenian
Azerbaijani
Basque
Belarusian
Bengali
Bosnian
Bulgarian
Catalan
Cebuano
Chichewa
Chinese (Simplified)
Chinese (Traditional)
Corsican
Croatian
Czech
Danish
Dutch
Esperanto
Estonian
Filipino
Finnish
French
Frisian
Galician
Georgian
German
Greek
Gujarati
Haitian Creole
Hausa
Hawaiian
Hebrew
Hindi
Hmong
Hungarian
Icelandic
Igbo
Indonesian
Irish
Italian
Japanese
Javanese
Kannada
Kazakh
Khmer
Korean
Kurdish (Kurmanji)
Kyrgyz
Lao
Latin
Latvian
Lithuanian
Luxembourgish
Macedonian
Malagasy
Malay
Malayalam
Maltese
Maori
Marathi
Mongolian
Myanmar (Burmese)
Nepali
Norwegian
Pashto
Persian
Polish
Portuguese
Punjabi
Romanian
Russian
Samoan
Scottish Gaelic
Serbian
Sesotho
Shona
Sindhi
Sinhala
Slovak
Slovenian
Somali
Spanish
Sudanese
Swahili
Swedish
Tajik
Tamil
Telugu
Thai
Turkish
Ukrainian
Urdu
Uzbek
Vietnamese
Welsh
Xhosa
Yiddish
Yoruba
Zulu