Android mobile devices are at risk of hacker attacks thanks to a software flaw in Qualcomm chipsets.
(CCM) — Roughly 900 million Android phones are vulnerable to being taken over by hackers due to a set of four recently discovered software flaws known as QuadRooter, security company Check Point announced today. A hacker can take over an affected phone using a malicious app that would need no special permissions to take advantage of the flaws, after which they would have unrestricted access to confidential data and passwords on the device. They would also have the ability to record video and audio on the device. Many popular Android phones are affected by this weakness, including Google's Nexus 5X, 6 and 6P, LG's G4, G5, and V10, Samsung's Galaxy S7 and S7 Edge, and OnePlus's One, 2, and 3.
The problem is caused by flaws in the software used by chipsets made by Qualcomm, the world's leading designer of LTE chipsets for phones. Since the software is pre-installed on devices by manufacturers, it can only be fixed by installing a patch supplied by the phone's distributor or carrier after they receive a fix from Qualcomm, said Adam Donenfeld, a member of Check Point's Mobile Research Team. "This situation highlights the inherent risks in the Android security model: critical security updates must pass through the entire supply chain before they can be made available to end users," he added.
Image: ©Twin Design - Shutterstock.com