Discovery of vulnerabilities in Qualcomm processors: the epicenter of the threat
The cybersecurity of millions of Android devices has been in check due to multiple vulnerabilities Criticisms detected by researchers at Check Point Research and other firms specializing in Qualcomm chips, the most popular processor manufacturer in the Android market. These flaws particularly affect the MSM (Mobile Station Modem) chips and DSP (Digital Signal Processor) processors, present in smartphones from brands such as Samsung, Google, LG, Xiaomi, OnePlus, Huawei, Motorola, Oppo and more. It is estimated that the reach may involve up to 40% of mobile phones worldwide.
How do these vulnerabilities exploited for espionage operate?
The detected vulnerabilities allow technically savvy attackers exploit security flaws to inject malicious and invisible code on the Android operating system. This method allows hackers to access SMS messages, call history, listen to phone conversations, and even unlock the SIM card of the compromised phone. In some cases, hackers have been detected. "no-click" techniques that do not require any user action, thus increasing the risk of silent spying.
The failures affect critical functionalities such as 5G connectivity, VoLTE and RCS, exploiting DSP services. For example, the vulnerability known as Use After Free (UAF) allows an attacker to execute arbitrary code, compromising the system's kernel-level security.
Real-life case: the use of spyware and its impact on users and digital rights
Serious cases have been reported in which Governments have used these vulnerabilities to deploy spyware , the NoviSpy activists, journalists, and political opponents, completely compromising the privacy of communications. An investigation by Amnesty International showed that forensic tools exploited critical flaws in Qualcomm chips, persistently installing spyware on vulnerable Android devices. Among the exploited vulnerabilities is the CVE-2024-43047, listed as critical by Google Project Zero.
Espionage using these techniques includes "zero-click" attacks, allowing for remote and discreet infiltration. Victims, often without their knowledge, have suffered unauthorized access to their personal data and communications. These incidents have highlighted the need for strengthen public cybersecurity policies and set clear limits on the use of surveillance technologies by governments and other entities.
Technical details: affected chips and global reach
Qualcomm's security bulletin and expert analysis have identified dozens of chips affected, including several popular mid- and high-end models. High-risk processors include:
- Snapdragon 660, 680, 685
- Snapdragon 8 Gen 1, 865 5G, 865+ 5G, 870 5G, 888 5G, 888+ 5G
These chips power devices used by millions of people around the world. The problem lies both in FastConnect WiFi components as in DSP memory controllers. It is important to note that vulnerabilities such as 5G AKA Bypass have allowed the interception and spying of internet data and SMS messages through social engineering and attacks on 4G and 5G networks.
Why are these Qualcomm chip flaws so dangerous?
The DSP chips and MSM, vital for multimedia and connectivity functions, operate as "Black boxes" where it is very difficult to audit the code or review its design from outside the company. This complicates threat detection and allows malware to hide "beneath" the Android operating system, bypassing the usual software protections. Furthermore, the use of devices with obsolete versions further increases the risk.
Attackers can turn mobile phones into complete spy tools, without the need for interaction by the user. This opens the door to remote access to photos, videos, real-time recordings, GPS location data, and even activation of the microphone and camera to covert monitoring. In addition, there is a risk of rendering the device completely unusable or disrupting its basic functions, as part of a denial-of-service attack.
The main risk increases because Many affected devices no longer receive updates by manufacturers, leaving millions of users exposed indefinitely. Patches and fixes, while developed by Qualcomm and Google, depend on each smartphone manufacturer for distribution, and not all of them do so uniformly or guarantee support for older models.
How you can protect yourself: recommendations and practical advice
Cybersecurity agencies and researchers insist on the importance of always keep the Android operating system up to date and apply the latest security patches as soon as they become available. In addition, it is recommended to reduce risks by choosing reliable sources to download applications and avoiding installing apps outside the Google Play Store or from recognized stores. It may also be useful learn about USB debugging features and its correct use.
- Check your processor modelYou can check the "About phone" section in Android settings to identify your device's chip and see if it's on the list of affected processors.
- Enable the remote wipe feature in case of theft or loss to minimize the impact of unauthorized access.
- Install a security solution reliable that includes anti-malware protection and threat monitoring.
- Be wary of suspicious calls and messages or unknown links, as these may be phishing attempts or access to “zero-click” vulnerabilities.
In privacy-critical environments, such as for human rights defenders, journalists, or senior executives, it's recommended to periodically scan your device with advanced tools and monitor manufacturer security reports. For more details, you can also consult how to install apk apps on android.
The significance of these threats not only affects individual users but also puts the business sector and government institutions on alert, due to the enormous potential for espionage, information theft, and digital sabotage. In this context, collaboration between manufacturers, developers, and cybersecurity experts is essential to ensure rapid and effective responses to future breaches.
It's crucial to stay informed and act proactively against these types of vulnerabilities. Protecting your privacy and personal data relies heavily on proper update management, choosing secure sources for installing software, and constantly monitoring for anomalies or behaviors. suspects on the mobile device.
