Categories: Android

QuadRoot vulnerability could affect Millions of Android phones


65% Of ‘4G’ enabled Android phones could be at risk from QuadRooter – What’s it all about?

A vulnerability had been identified in one of the Qualcomm LTE chipsets used in many modern Android phones. The chipsets primary purpose is to provide access to the LTE network (often called 4G) and the Qualcomm chipsets make up about 65% of the market according to CheckPoint

[http://blog.checkpoint.com/2016/08/07/quadrooter/]

Phones Affected

Some of the most popular Android phones are at risk of the vulnerability, they include:

  • BlackBerry Priv
  • Blackphone 1 and Blackphone 2
  • Google Nexus 5X, Nexus 6 and Nexus 6P
  • HTC One, HTC M9 and HTC 10
  • LG G4, LG G5, and LG V10
  • New Moto X by Motorola
  • OnePlus One, OnePlus 2 and OnePlus 3
  • Samsung Galaxy S7 and Samsung S7 Edge
  • Sony Xperia Z Ultra

To exploit the vulnerability requires a malicious app to run, however no privileges are required so once an app is installed, it can make use of the vulnerability to gain elevated access to your phone. Once it’s done that the app could download other virus payloads in the background, and monitor the sensors, camera, microphone and apps you use.

To check if your phone is at risk, Check Point have released a safe app that will tell you if you’re at risk, download it from the Google Playstore here: [https://play.google.com/store/apps/details?id=com.checkpoint.quadrooter]

How to I protect my phone?

The drivers that carry the vulnerability are pre-installed at the point of manufacturer. The only way to fix the issue is by patching the ROM, and that requires your phone manufacturer and network distributor to push the patch file out to your phone or make it available on their website.

It’s notoriously difficult to get some the manufacturers to send out regular updates, so using other safeguards is (as always) good measure, such as a reliable and trustworthy Mobile Threat solution, and only using genuine playstore apps.

#WeCanHelp

If you have a phone you think may be susceptible to QuadRoot and would like it checked, or if you need any help securing your mobile devices, contact us immediately.

We can also provide corporate mobile device and BYOD security and management solutions to protect your corporate data on a non-secure device.

07825650122 | it@tinsleyNET.co.uk | @tinsleyNET | +tinsleyNETcouk | www.tinsleynet.co.uk | Facebook | #Stuff4Steph
tinsleyNET IT Services Consultant
IT Support for small to medium or large sized businesses, home office workers and home users
across the UK based in the West Midlands and Shropshire.
#WeCanHelp

Share
Leave a Comment