A flaw In some chips MediaTek would allow of pirates and smartphone Android in less of a minute. THE researchers can access to data even when the device East extinct.
And smartphone extinct is not not necessarily in security. Of the researchers of laboratory of cybersecurity of Ledger, the Dungeon, ont discovered a flaw critique allowing of compromise some phones Android in less of a minute.
Concretely, this flaw comes from a hardware vulnerability originating from certain MediaTek chips. It only took 45 seconds for researchers to get their hands on the PIN code, decrypt the entire storage, access the messages and photos and extract the seed phrases (sequence of 12 to 24 words generated when creating a wallet) of crypto wallets. The affected wallets are Trust Wallet, Phantom, Kraken Wallet, Rabby and Tangem Mobile Wallet.
To achieve this, the researchers only needed a USB cable and access to the smartphone, even when it was turned off. The problem is that MediaTek equips many smartphones currently in circulation around the world. It is estimated that 25% of these devices are equipped with a chip from the Taiwanese manufacturer. All of these devices are therefore potentially vulnerable to this flaw. This is located in the secure boot chain of MediaTek processors, at the time of execution of the very first code, namely the Boot ROM.
Researchers alerted MediaTek, which provided a fix to smartphone manufacturers on January 5. However, some manufacturers have yet to roll out a patch that addresses this issue, potentially putting the smartphones of millions of users at risk.
_
Follow Geeko on Facebook, Youtube and Instagram so you don’t miss any news, tests and good deals.
Receive our latest news directly on your WhatsApp by subscribing to our channel.
