One of the downsides of the technological era is that it is always very vulnerable to attacks and breaches because there are so many new developments every year and the old one gets outdated very soon. According to researchers over a billion devices are at risk because of Qualcomm vulnerabilities
Over a Billion Devices at Risk Because of Qualcomm Vulnerabilities
During the latest DEF CON hacker conference, a cybersecurity firm named CheckPoint highlighted these Qualcomm vulnerabilities by presenting details that the Digital Signal Processor(DSP) chips on Qualcomm Snapdragon processors have “over 400 vulnerabilities”, and this is actually a major threat to the mobile users across the world.
To make it clear, the DSP chips handle a lot of important processing like charging, audio, video, AR, image processing, and various multimedia functions. And this chip also lets the manufacturers add their own functionality on the chip so that the manufacturers can run their own apps on the top of the existing framework.
Companies like Samsung, Google, Xiaomi, and others use Qualcomm Snapdragon chips on their phones and according to CheckPoint, 40% of Android devices have Qualcomm chips. There are 3 billion Android devices around the world and that means that over 1 billion devices are affected by these Qualcomm vulnerabilities.
Checkpoint had already submitted these findings to Qualcomm under the name of “Achillies” earlier this year. Qualcomm said that it has already released a fix for these flaws. Qualcomm said in a statement, “Regarding the Qualcomm Compute DSP vulnerability disclosed by Check Point, we worked diligently to validate the issue and make appropriate mitigations available to OEMs. We have no evidence it is currently being exploited. We encourage end users to update their devices as patches become available and to only install applications from trusted locations such as the Google Play Store”.
Now according to CheckPoint, Google has not yet incorporated the patch into ASOP, and the manufacturers have not released fixes for their devices as well. Keeping the sensitivity of this issue in mind, CheckPoint has not disclosed the technical details about the vulnerabilities. You can read about all the findings from CheckPoint in the source link given below.
Read More About