900 million Android devices harbor security flawsCheck Point researchers discover four flaws that could compromise a huge number of Android phones and tablets.
Four security affect over 900 million Android devices. Researchers at security firm Check Point say that a quartet of security flaws in Walcom chip sets could be exploited to give an attacker full control of your Android device. Check Point had dubbed the flaws quad rooter. There is no word on why the company did not go with the much better nickname, the Four Horsemen of the Android Apocalypse, but if I had to guess I'd say with, so Google would find Checkpoint's site first for the term QuadRooter. Anyway, Checkpoint says that QuadRooter is a set of four vulnerabilities affecting Android devices using Qualcomm chipsets. If any of the four are exploited and Android device could be compromised. An attacker would have to get you to download a malicious app. This app would not ask for any special permissions so that you wouldn't even know this app is up to no good. After installation, the app could take advantage of the flaws to gain root control of you phone. When a phone is rooted, anything can be installed or changed. Qualcomm chips are in lots of popular phones. Here are just some of the phone models affected. The Google Nexus 5S and 6P, the ACC1M10, the LGG5, and the US versions of the Samsung Galaxy S7 and S7 Edge. This all sounds horrible. So here's the good news. Checkpoint says there's no evidence that flaws have been exploited in the wild. Additionally, the research firm told Qualcomm about the issue back in April, then waited the industry standard of 90 days before telling the world. Qualcomm confirmed to Check Point it will release patches to the phone and tablet makers. Google told ZDNet that one of the flaws will be patched in a September update to Android. If you're considered that your device is affected Check Point released a free Android app called QuadRooter Scanner on the Google Play store. Download away. That's it for this tech news update. I'm [UNKNOWN]. And you can stay on top of the biggest stories at Cnet.com/update.