IT Wiser

Researchers from the University of California Santa Barbara have uncovered bootloader vulnerabilities across lots of different Android chipsets. The vulnerabilities that have been found are across 6 different vendors.

The team of 9 researchers decided to look into the architecture of Android, the interaction between the OS and the chip when the device is powered up. The researchers built a tool called “BootStomp” which tries to locate weak areas where hackers could compromise the bootloader.

The tool turned up exploitable bugs in Qualcomm, MediaTek, NVIDIA and Huawei, 6 new bugs were found plus CVE-2014-9798 which was already known but is still present in Qaulcomm devices.

ITWiser offer a wide range of services and solutions that can help prevent issues like this from affecting you and your business. We offer internal security audits and external security audits, these audits are designed to highlight issues inside and outside your network. For more information on these or on any of our other services please get in touch today.