Millions of Android users could be at risk after the Indian government issued a fresh cybersecurity warning.
The alert comes from the Indian Computer Emergency Response Team, commonly known as CERT-In.
According to the advisory, newly discovered security flaws could allow attackers to steal sensitive information from devices or disrupt systems through denial-of-service attacks.
The warning affects a large number of Android users in India, making it important for smartphone owners to update their devices as soon as possible.
Security Risk Linked to Android’s Core System
Unlike earlier alerts that targeted specific Android versions, this warning focuses on vulnerabilities at the kernel level, which is a core part of how the Android system works.
The issue is linked to OpenSSL, a widely used security technology integrated into many Android applications.
If these vulnerabilities are exploited, hackers may gain deeper access to a device’s system.
This could allow them to view private data, interfere with system operations, or even compromise entire networks.
Multiple Hardware Platforms Affected
The CERT-In bulletin classifies the issue as having critical severity.
It says the vulnerabilities are connected to several hardware platforms used by Android devices.
These include systems associated with companies such as Qualcomm, MediaTek, NVIDIA, Broadcom, and UNISOC.
Because these chipsets power millions of smartphones worldwide, the potential impact could be widespread.
OpenSSL Versions Impacted
The security issues mainly affect the following OpenSSL versions:
OpenSSL 3.6
OpenSSL 3.5
OpenSSL 3.4
OpenSSL 3.3
OpenSSL 3.0
OpenSSL 1.1.1
OpenSSL 1.0.2
Devices using these versions could potentially be targeted by attackers if they remain unpatched.
Why This Is a Serious Concern
These vulnerabilities can affect both individual users and organisations that rely on Android devices for work or daily communication.
If exploited, attackers could access confidential information, disrupt systems, or compromise entire networks without the user’s knowledge.
Since these issues occur at a deep system level, they are difficult for regular users to detect.
What Android Users Should Do Now
Security experts recommend installing the latest system update as soon as it becomes available.
Google has already released the March 2026 Android security update, which includes fixes for several vulnerabilities.
Users should check their device settings and install the update immediately to reduce the risk of cyberattacks.
Keeping apps and the operating system updated remains one of the most effective ways to stay protected.
