Ryan McLeod / Android Authority
TL;DR
- A zero-day vulnerability found in several Qualcomm chipsets was recently exploited to target Android users.
- This vulnerability affects 64 chipsets, including Snapdragon SoCs, modems, and FastConnect connectivity modules.
- Qualcomm has already shared a patch with OEMs that addresses this issue.
Qualcomm has revealed a zero-day vulnerability discovered in its chipset that was recently exploited to target Android users. This vulnerability reportedly affects a wide range of chipsets found in Android phones, including midrange and flagship SoCs, modems, and FastConnect connectivity modules.
The zero-day vulnerability, discovered by security researchers from Google’s Threat Analysis Group and Amnesty International’s Security Lab, was reportedly exploited to target individuals rather than being used for widespread attacks. (via) tech crunch). However, little is currently known about the perpetrators and affected users.
Qualcomm lists 64 affected chipsets in its security bulletin. This includes flagship SoCs like Snapdragon 8 Gen 1 and Snapdragon 888+, midrange SoCs like Snapdragon 660 and Snapdragon 680, FastConnect 6700, 6800, 6900, and 7800 modules, and Snapdragon X55 5G modem.
These chipsets are found in smartphones from a variety of OEMs, including Samsung, Motorola, and OnePlus. The Snapdragon X55 5G modem is also included in the iPhone 12 series, but it is not clear whether the hackers targeted iPhone users.
The chipmaker said a patch addressing the issue was shared with OEMs last month and they were “strongly encouraged to deploy the update to affected devices as soon as possible.” If your device has one of the affected chipsets, you can expect a patch to arrive soon.
