Watch this space — you need this update ASAP.
AFP via Getty Images
Updated on Dec. 10 with the news on Samsung’s critical update progress.
Android is under attack. Google issued a warning on Dec. 1 along with what is essentially an emergency update. This was rushed out to all Pixel users. But for most Samsung users, these fixes are not yet available, despite attacks now underway.
Google confirms CVE-2025-48633 and CVE-2025-48572 “may be under limited, targeted exploitation,” with attacks that can achieve “remote denial of service” on target smartphones “with no additional execution privileges needed.”
Samsung confirmed its own fixes within hours of Google’s warning. It also fixed three other vulnerabilities disclosed by Google’s Project Zero, which studies zero-days “in the hardware and software systems that are depended upon by users around the world.”
ForbesApple’s iPhone Security—Even Putin Can’t Beat iMessageBy Zak Doffman
Just 24 hours after Google confirmed the Android attacks, the U.S. cyber defense agency issued its own warning, mandating federal staff update or stop using phones. “Android’s Framework,” CISA says on its known exploited vulnerability website, “contains an unspecified vulnerability that allows for privilege escalation.”
But as always when zero-day attacks are disclosed, Android’s disconnect is highlighted. “Samsung is the king of Android,” Android Authority pronounced over the weekend. “Its global market share among Android makers exceeds 30%. In other words, almost one in three people who buy an Android phone end up choosing Samsung.”
Samsung should come first — not Pixel, with its modest market share. But that won’t happen. Samsung bears responsibility for changing an update cycle that still runs a full month to deploy critical fixes to its user base. And it bears responsibility for the lack of seamless updates on all but the Galaxy S25 and one random, mid-range phone.
But in reality, Samsung (and the other Android OEMs) cannot compete with Google and its unique control over hardware and software. Its phones will always come first. First to new versions of the OS, first to new feature releases, first to security updates. That’s why One UI 7 and One UI 8. (Android 15 and 16) were so delayed, frustrating so many.
Per SamMobile, “Samsung is (now) rolling out a software update to the Galaxy S25, Galaxy S25+, and the Galaxy S25 Ultra in its home country, South Korea. It offers the December 2025 security patch, which fixes 57 security vulnerabilities.”
That’s the latest flagship getting updates in just one market. “We expect Samsung to offer the update in other regions around the world in the next few days.” But not everyone, everywhere. That’s just not how it works.
Users need to check their settings or keep an eye on specialist website reports. On Dec. 10, a week after Pixel’s update, SammyGuru reported that “Samsung is rolling out the December update to several other Galaxy devices in phases, depending on the region. This includes the Galaxy A34, Tab S6 Lite, XCover 7, S25 series (including the FE model), Z Fold 7, and Z Flip 7. Meanwhile, if you own a Galaxy A34, you can now check for the update as the company has expanded the rollout globally.”
ForbesGmail, Outlook, Teams And Slack Users Now At Risk From ‘Uncontrolled Threat’By Zak Doffman
All Samsung Galaxy phones will get the update — assuming they’re on the monthly schedule. And some may get the updates even if they’re not. But it will deploy by model, region and carrier. Bit by bit. And in a world where Pixel is quick and Apple is quick, Samsung cannot afford to be slow. It seems inevitable that Android must change.
Meanwhile this situation may get worse as Google changes Android. “A new chapter for how Android updates work, moving from a single, yearly operating system update to more frequent releases, means you get the latest features as soon as they’re ready.” But not for everyone. It’s likely this applies only to Pixel. Other phones have to wait.