An urgent security alert has been issued for Android users, warning of a critical vulnerability that could be exploited by cybercriminals to bypass a phone’s lock screen. The flaw, identified by the Donjon security team, allows attackers to access personal data and device contents within minutes. This vulnerability, known as CVE-2026-20435, affects Android devices powered by MediaTek processors, which are commonly found in budget smartphones.
Security experts have demonstrated how the vulnerability works by connecting a vulnerable phone to a laptop via USB to retrieve the device’s PIN, decrypt storage, and access sensitive files swiftly. According to Malwarebytes, the flaw impacts MediaTek SoCs using Trustonic’s TEE, affecting approximately one in four Android phones, particularly lower-cost models.
To mitigate the risk, users are advised to check their phone’s processor information in the Settings menu and ensure that security updates are promptly installed, especially for devices using MediaTek chips. While MediaTek has released a fix, users must wait for individual device manufacturers to distribute it through software updates. Keeping devices up to date is crucial for protection against such vulnerabilities.
It is important to note that this attack requires physical access to the device, reducing the risk for users who maintain possession of their phones and regularly update them. However, older devices that no longer receive updates may remain vulnerable, prompting users with aging phones to exercise caution or consider upgrading for enhanced security.
