This chip flaw could have let malicious apps eavesdrop on Android phone users

0
19

Liam Tung

By

Liam Tung

| November 25, 2021

| Topic: Security

BEC and romance scams: How to protect your business

Watch Now

Taiwanese chip maker MediaTek has addressed four vulnerabilities that could have allowed malicious apps to eavesdrop on Android phone users. 

Three the of vulnerabilities, tracked as CVE-2021-0661, CVE-2021-0662 and CVE-2021-0663, affected MediaTek’s audio digital signal processor (DSP) firmware. It’s a sensitive component that if compromised could allow attackers to spy on user conversations. 

Researchers at Check Point found and reported the flaws to MediaTek, which disclosed and fixed them in October. A fourth issue affects the MediaTek HAL (CVE-2021-0673). It was also fixed in October but will be disclosed in December. 

Smartphones

|
Security TV

|
Data Management

|
CXO

|
Data Centers

LEAVE A REPLY

Please enter your comment!
Please enter your name here