Less than two weeks after the news of a government-grade iOS exploit kit, security researchers have now revealed a crypto-stealing vulnerability in Android devices.
Researchers at Ledger Donjon, a security arm of the major crypto hardware wallet manufacturer Ledger, discovered a MediaTek vulnerability that enabled criminals to steal crypto assets from the most popular Android-based wallets. The vulnerability is said to have been fixed by MediaTek, a Taiwanese fabless semiconductor company, in January.
https://cybernews.com/crypto/android-flaw-attackers-steal-crypto-wallet-seed-phrases/
Posted by Cybernews_com
2 Comments
tldr; Security researchers at Ledger Donjon discovered a vulnerability in Android devices using MediaTek chips that allowed hackers to steal crypto wallet seed phrases. The flaw enabled attackers to bypass security, recover PINs, decrypt storage, and extract wallet seeds within seconds if they had physical access to the device. MediaTek fixed the issue in January, but the incident highlights the security limitations of general-purpose chips in smartphones compared to dedicated secure elements designed for protecting sensitive data.
*This summary is auto generated by a bot and not meant to replace reading the original article. As always, DYOR.
*IF they have physical access to the device