\n
![](\"https:\/\/crypto.news\/app\/uploads\/2023\/06\/crypto-news-hacker-writing-a-code-on-his-laptop-blurry-background-dark-neon-color-cyberpunk.jpg\")
<\/p>\n
\n<\/p>\n
Security researchers at Ledger have discovered a major flaw in some Android smartphone chips that lets an attacker siphon encrypted user data like passwords and private keys in a matter of seconds using just a USB connection.<\/p>\n
\n Summary<\/span>\n <\/p>\n <\/p>\n The vulnerability was first spotted in January by Ledger\u2019s internal security research team, Donjon, Ledger Chief Technology Officer Charles Guillemet wrote in a recent X post<\/a>.\u00a0<\/p>\n According to Guillemet, the vulnerability affected smartphones powered by MediaTek and Trustonic\u2019s TEE processors.\u00a0<\/p>\n MediaTek has since issued a security patch to fix the issue; users who have not installed the latest security updates on their devices may still remain at risk.<\/p>\n <\/p>\n White hat hackers were able to penetrate a smartphone from manufacturer Nothing, notably the company\u2019s CMF 1 phone, in under 45 seconds using a laptop.<\/p>\n \u201cWithout ever even booting into Android, the exploit automatically recovered the phone\u2019s PIN, decrypted its storage, and extracted the seed phrases from the most popular software wallets,\u201d Guillemet said.<\/p>\n This puts software wallets like Trust Wallet, Base, Kraken Wallet, Rabby, Tangem\u2019s mobile wallet, and Phantom at risk, as the seed phrases and other sensitive credentials are stored locally on the device.<\/p>\n In their report<\/a>, researchers noted that the vulnerability allowed attackers with physical access to bypass the phone\u2019s security protections through the secure boot chain, which is a core startup process that runs at the highest privilege level before the operating system loads. Subsequently, the attacker can recover the device\u2019s PIN, decrypt its storage, and extract the information.<\/p>\n \u201cThis has the potential to affect millions of Android smartphones,\u201d Guillemet added.<\/p>\n Estimates suggest nearly 36 million people manage digital assets on their smartphones, which means that if attackers manage to exploit a vulnerability, it could put a large number of wallets at risk.\u00a0<\/p>\n Guillemet advised using devices with dedicated secure elements that are built for key protection and can safeguard sensitive data even under physical attack.<\/p>\n The Ledger team also detailed a separate attack it tested on MediaTek Dimensity 7300 processors (MT6878) in December, where the team used electromagnetic fault injection to disrupt the chip\u2019s boot process. It allowed them to bypass security checks and ultimately gain full control over the smartphone at the highest privilege level.<\/p>\n As covered by crypto.news on several occasions, crypto users have been targeted across multiple platforms, including iOS, macOS, and Windows.<\/p>\n While Android devices are often easier to compromise due to Google\u2019s more open ecosystem and flexible app distribution model, Apple\u2019s iOS devices have also developed unique attack vectors that target users through malicious frameworks embedded inside otherwise legitimate apps.<\/p>\n For instance, last year, security researchers discovered a malicious app<\/a> that infiltrated both iOS and Android devices by requesting file access and subsequently scanning device storage to extract wallet data. Although not as technically severe in nature as hardware-level exploits, the scheme still managed to steal more than $1.8 million in cryptocurrency.<\/p>\n Around the same time, Kaspersky flagged a malware campaign<\/a> that spread through malicious software development kits embedded in seemingly harmless apps.<\/p>\n <\/p><\/div>\n\n\n