A defective Qualcomm chip can lead to intruders |
Qualcomm chips have been compromised due to security holes that could lead to tampering with them. These vulnerabilities in millions of smartphones in use around the world could provide hackers with a gateway to users' personal data without user intervention.
According to a report by Security Research Corporation (Check Point), nearly 40% of cell phones around the world use Qualcomm chips with more than 400 vulnerabilities. These vulnerabilities could allow hackers to monitor the GPS and microphones of users in real time.
Weak modules, digital signal processors or DSP chips from Qualcomm, and especially Qualcomm Snapdragon's DSP chipset, affect mobile phones and popular devices from Samsung, LG, Xiaomi and Google.
DSP chip developed including software and hardware. In order to optimize charging, audio, and multimedia activities, these shortcomings remind us that regular hardware chipsets have many weaknesses.
Two years ago, Google (Project Zero) security researchers discovered vulnerabilities in Specter and Meltdown affecting nearly all modern computer chips.
Qualcomm said there was no evidence that hackers exploited the flaw and worked with device manufacturers to solve the problem.
A Qualcomm spokesperson said: Providing technology to support security and privacy is Qualcomm's top priority. We have worked hard to review issues and provide correct fixes to device manufacturers. We recommend that end users update their devices as soon as patches are available and only install apps from trusted sites. Just like on Google Play Store.
Some vulnerabilities could allow the attacker to monitor the user's photos, videos, calls, GPS location, and gain access to his microphone.
The company (Check Point) said: The flaws could make migrants permanently unavailable any data (including contacts, photos and videos) stored on their phones, resulting in migrants not answering their phones.
Although some security vulnerabilities allow attackers to hide malware, these vulnerabilities do not appear to affect iPhone.
According to the security company, it is possible to run a library for one device on another. This means that a vulnerability in one of the manufacturer's libraries threatens all Snapdragon-based Android devices.
Qualcomm has notified multiple vendors of various vulnerabilities, including (CVE-2020-11201), (CVE-2020-11202), (CVE-2020-11206), (CVE2020-11207) and (CVE-2020-11208). And (CVE) -2020-11209).