Aug 27, 2016

QuadRooter vulnerability, over 1 billion devices vulnerable


QuadRooter - A new Android bug, over 1b devices vulnerable

What is QuadRooter?

QuadRooter is a set of four vulnerabilities affecting Android devices built using Qualcomm chipsets. Qualcomm is the world’s leading designer of LTE chipsets with a 65% share of the LTE modem base-band market. If any one of the four vulnerabilities is exploited, an attacker can trigger privilege escalations for the purpose of gaining root access to a device.

Which devices QuadRooter can attack?
QuadRooter vulnerabilities are found in software drivers that ship with Qualcomm chipsets. Any Android device built using these chipsets is at risk. The drivers, which control communication between chipset components, become incorporated into Android builds manufacturers develop for their devices.Since the vulnerable drivers are pre-installed on devices at the point of manufacture, they can only be fixed by installing a patch from the distributor or carrier. Distributors and carriers issuing patches can only do so after receiving fixed driver packs from Qualcomm.This situation highlights the inherent risks in the Android security model. Critical security updates must pass through the entire supply chain before they can be made available to end users. Once available, the end users must then be sure to install these updates to protect their devices and data.

Is my device safe?
Your device might be safe if it's not Qualcomm, or maybe if it is Qualcomm, even without patched installed.But there's also a slight chance that your device has it, even if you visit trustworthy websites, or use trusted apps.But you should install and run scan to check QuadRooter vulnerability.


QuadRooter Scanner: https://play.google.com/store/apps/details?id=com.checkpoint.quadrooter
Source: http://blog.checkpoint.com/2016/08/07/quadrooter/

1 comment:

  1. gtavapk.buzz
    Your device might be safe if it's not Qualcomm, or maybe if it is Qualcomm,

    ReplyDelete