Experts have found major security flaws in chips being used in nearly 900 million Android smartphones globally that could give cyber criminals complete access to the data.
According to them, the bugs were uncovered at the software running on chipsets made by US firm Qualcomm, BBC reported on Monday.
Qualcomm processors are found in about 900 million Android phones, Check Point said, adding that there is no evidence of the vulnerabilities currently being used in attacks by cyber thieves.
“I am pretty sure you will see these vulnerabilities being used in the next three to four months,” Michael Shaulov, head of mobility product management at Checkpoint, was quoted as saying.
The flaws, which were found in software that handles graphics and in code that controls communication between different processes running inside a phone, were revealed after six months of work to reverse engineer Qualcomm’s code.
The attackers can exploit the bugs to gradually take control over a device and gain access to data. “It is always a race as to who finds the bug first, whether it is the good guys or the bad,” Shaulov added.
According to the report, Check Point handed information about the bugs and proof of concept code to Qualcomm earlier this year.
In response, Qualcomm is believed to have created patches for the bugs and started to use the fixed versions in its factories.
As a security measure, Android owners should download apps only from the official Google Play store.
© 2024 SAUDI RESEARCH & PUBLISHING COMPANY, All Rights Reserved And subject to Terms of Use Agreement.