Most Google Pixel phones sold since September 2017 included software that could be used to surveil or remotely control users’ phones, according to a new report from the cybersecurity company iVerify.
The vulnerability was discovered after iVerify’s endpoint detection and response (EDR) scanner flagged an insecure Android device at Palantir Technologies, an iVerify client. After launching a joint investigation, iVerify, Palantir, and Trail of Bits discovered a hidden Android software package — Show...