Wired
Qualcomm’s modem chip installed in many high-end Android smartphones has a serious vulnerability that could lead to eavesdropping on phone calls and eavesdropping on SMS if exploited. Software development Check Point Research warns.
Affects more than 30% of smartphones?
According to Check Point Research (CPR), Qualcomm’s modem chip, the Mobile Station Modem (MSM), is found in more than 40% of smartphones worldwide, including Google, Samsung, Xiaomi and OnePlus.
This time, the vulnerability was confirmed in the Qualcomm MSM interface (QMI), which enables “communication” between software components in MSM and peripheral systems such as cameras and fingerprint scanners installed in smartphones. QMI is installed in about 30% of smartphones around the world.
SIM lock can also be unlocked
According to CPR, the vulnerability could allow an attacker to inject malicious code into a smartphone using the Android OS itself as an entry point, read SMS messages and call history, and eavesdrop on calls.
In addition, CPR warns that it is possible to unlock the SIM.
CPR has already reported this vulnerability to Qualcomm, and although the company is aware of the problem and has notified each smartphone vendor, it seems that patch distribution has been delayed.
Source: Check Point Research via Wccftech
Photo: WikiChip
(lunatic)
Source: iPhone Mania