Android Chip security vulnerabilities allow hackers to eavesdrop on conversations

The Check Point (CPR), η ομάδα έρευνας της Check Point , επισημαίνει κενά ασφαλείας στο τσιπ του επεξεργαστή που βρίσκεται στο 37% των smartphones παγκοσμίως. Αν τα κενά αυτά δεν επιδιορθώνονταν, ένας χάκερ θα μπορούσε να εκμεταλλευτεί τις to eavesdrop on and/or hide from Android users code.

- Security gaps were found in the chip of MediaTek, the largest chipset supplier in the world, a partner of Xiaomi, Oppo, Realme, Vivo etc.
- CPR through reverse engineering, for the first time, of MediaTek audio processor reveals security gaps
- CPR officially announced the findings to MediaTek

android, Check Point

Check Point Research (CPR) has identified security vulnerabilities in the smartphone chip of their Taiwanese production company, MediaTek. The MediaTek chip is found in 37% of smartphones worldwide and serves as the main processor for almost every notable Android device, including Xiaomi, Oppo, Realme, Vivo and others. Security vulnerabilities have been identified in the chip's audio processor, and if left unchecked, vulnerabilities could allow a hacker to eavesdrop on an Android user and / or hide malicious code.

record

MediaTek chips include a dedicated AI processing unit (APU) and a digital audio signal processor (DSP) to improve multimedia performance and reduce CPU usage. Both APU and DSP audio have custom microprocessor architectures, making MediaTek's DSP a unique and challenging target for security research.

CPR began to worry about the extent to which MediaTek DSP could be used as an attacker for perpetrators. For the first time, CPR was able to reverse engineer MediaTek's audio processor, revealing several security flaws.

Attack methodology

To exploit vulnerabilities, the sequence of actions of a threatening agent, in theory, would be as follows:

1) A user installs a malicious from the Play Store and starts it
2) The application uses the MediaTek API to attack a library that has the right to communicate with the audio driver
3) The permissions application sends edited messages to the audio driver to execute code in the audio processor firmware
4) The application steals the audio stream

Responsible Disclosure

CPR has officially disclosed its findings to MediaTek, creating the following: CVE-2021-0661, CVE-2021-0662, CVE-2021-0663. These three vulnerabilities were subsequently corrected and published in the MediaTek Security Bulletin in October 2021.

The security issue in MediaTek Audio HAL (CVE-2021-0673) was corrected in October and will be published in the MediaTek Security Bulletin in December 2021.

CPR also informed Xiaomi of its findings.

iGuRu.gr The Best Technology Site in Greecefgns

every publication, directly to your inbox

Join the 2.100 registrants.
android, Check Point

Written by newsbot

Although the press releases will be from very select to rarely, I said to go ... because sometimes the authors are hiding.

Leave a reply

Your email address is not published. Required fields are mentioned with *

Your message will not be published if:
1. Contains insulting, defamatory, racist, offensive or inappropriate comments.
2. Causes harm to minors.
3. It interferes with the privacy and individual and social rights of other users.
4. Advertises products or services or websites.
5. Contains personal information (address, phone, etc.).