Qualcomm’s chips suffer from security flaws that could allow intrusion, and these security flaws found in millions of smartphones in use around the world could give hackers a gateway to users’ personal data.
And according to To report Security research company Check Point, the more than 400 vulnerabilities in Qualcomm chips used in nearly 40 percent of cell phones in the world could allow hackers to spy on users’ GPS and microphones in real time.
Qualcomm’s weak modules, digital signal processor or DSP chips, specifically the Qualcomm Snapdragon DSP chip, affect mobile phones and popular devices from Samsung, LG, Xiaomi and Google.
DSP chips, made of software and hardware, are designed to enhance charging, audio features, and multimedia activities, but these shortcomings are a reminder that chips in common devices represent many weaknesses.
The Specter and Meltdown vulnerabilities, which security researchers discovered, affected (Project Zero) From Google two years ago, on nearly every modern chip.
Qualcomm said it had not seen any evidence that hackers exploited the vulnerabilities, and that it was working with device manufacturers to address the problem.
A Qualcomm spokesperson said: Providing technologies that support security and privacy is a priority for Qualcomm, and we have worked hard to validate the issue and make appropriate patch available to device manufacturers, and we encourage end users to update their devices when patches become available and install apps from trusted sites only, such as Google Play Store.
Some vulnerabilities could allow attackers to spy on users’ photos, videos, calls, GPS location, and even access their microphones.
The company (Check Point) said: Flaws may allow the migrants to force the phone to not respond, by making all data stored on the phone permanently unavailable, including contacts, photos and videos.
While some security vulnerabilities allow attackers to hide malware, the vulnerabilities do not appear to affect iPhones.
According to the security company, it is possible to run a library for one device on any other device, and this means that the vulnerability discovered in one of the manufacturer’s libraries threatens all Snapdragon-based Android devices.
Qualcomm has notified several manufacturers of the security holes, which carry many numbers, including (CVE-2020-11201), (CVE-2020-11202), (CVE-2020-11206), (CVE2020-11207) and (CVE). -2020-11208) and (CVE- 2020-11209).