The Android bug was discovered by Checkpoint researchers looking at software running on chipsets made by US firm Qualcomm.
Researchers at Israeli security firm Check Point researchers recently discovered a vulnerability found in Qualcomm processors working on Android. It can affect as many as 900 million devices.
QuadRooter
QuadRooter is a specific set of four vulnerabilities which are known to attack Android devices running on Qualcomm chipsets. If the hacker exploits any one of the four vulnerabilities that it can gain root access to a device. Gaining root access on a device is highly valuable as it allows the attacker access to various capabilities.
How it works?
An attacker simply needs to trick a user into installing a malicious app which allows him complete access to saved data. The attacker can also change or remove system-level files; delete or add apps; and access the device's screen, camera, or microphone at will.
According to Check Point, “Since the vulnerable drivers are pre-installed, they can only be fixed via a patch from distributors or carriers. Those companies, meanwhile, can only push the repair after receiving new driver packs from Qualcomm.”
Check Point has revealed that even the most secure devices are at risk. Some of the smartphones vulnerable to attack are:
BlackBerry Priv, Blackphone, Blackphone 2, Google Nexus 5X, Nexus 6, Nexus 6P, New Moto X, OnePlus One, Two and Three and Samsung Galaxy S7 and S7 Edge.
San Diego based Qualcomm recently unveiled its latest mobile processor, the Snapdragon 821, boasting 10 percent better performance than the 820 last month.