Close Menu
GeekBlog

    Subscribe to Updates

    Get the latest creative news from FooBar about art, design and business.

    What's Hot

    The Hisense A10 Is an E Ink Phone With a Detachable Color Screen, and It Might Be Onto Something

    July 15, 2026

    Best Quickscope Sniper in COD Mobile: DL Q33 vs Locus vs LW3 Tundra

    July 14, 2026

    LinkedIn Declares War on AI Slop, But Can It Actually Tell the Difference?

    July 13, 2026
    Facebook X (Twitter) Instagram Threads
    GeekBlog
    • Home
    • Mobile
    • Tech News
    • Blog
    • How-To Guides
    • AI & Software
    Facebook
    GeekBlog
    Home»Tech News»A major security flaw could affect 1 in 4 Android phones – here’s how to check yours
    Tech News

    A major security flaw could affect 1 in 4 Android phones – here’s how to check yours

    Michael ComaousBy Michael ComaousMarch 12, 20264 Mins Read
    Share Facebook Twitter Pinterest LinkedIn Tumblr Email Copy Link
    A major security flaw could affect 1 in 4 Android phones - here's how to check yours
    Share
    Facebook Twitter LinkedIn Pinterest Email Copy Link

    Kerry Wan/ZDNET

    Follow ZDNET: Add us as a preferred source on Google.


    ZDNET’s key takeaways

    • Researchers have found a flaw in a chip common in Android phones.
    • The flaw enables quick access and theft via a USB cord.
    • Cybercrime targeting hardware security flaws is on the rise.

    A hardware security flaw found in many Android phones allowed white hat hackers to gain entry in under a minute, according to a new report. From there, they accessed sensitive user data, including messages and crypto wallet seed phrases.

    The flaw can be exploited by simply connecting an affected Android device to a laptop via a USB cable, according to a Wednesday report published by Donjon, the research division of crypto security hardware company Ledger. The phone’s PIN could then be automatically brute-forced, its storage decrypted, and seed phrases from popular crypto wallets like Kraken Wallet and Phantom extracted.

    Also: How to enable Advanced Protection on your Android phone – and why it’s critical to do so

    “As far as we could tell, this vulnerability has been present for a very long time — probably a decade — and yet had not so far been discovered publicly,” Ledger CTO Charles Guillemet told ZDNET.

    A flaw in nearly 25% of Android phones

    The vulnerability is rooted in the hardware, said Donjon, specifically in Trustonic’s trusted execution environment (TEE), part of a device’s processor designed to protect against hacking, and in MediaTek chips. According to one estimate, those chips are used in as many as one-quarter of all Android smartphones — mostly cheaper versions.

    Following what Guillemet describes as “months of intense reverse engineering efforts,” Donjon was able to hack into the devices via a security flaw in the MediaTek chips’ “boot chain,” the series of cryptographic steps a device runs through while booting up to ensure that all of its encrypted information is secure from an outside attack. 

    Also: Don’t rely on your router’s USB port when these alternatives are less prone to security risks

    In about 45 seconds, before the phone’s operating system has even finished fully loading, “an attacker can connect over USB and extract the root cryptographic keys that protect Android’s full-disk encryption,” Donjon wrote in a press release.

    “We don’t know if the particular vulnerability we discovered has been used by attackers in the past — there’s no evidence of this,” says Guillemet. “But it’s a safe bet that other vulnerabilities with similar impact still exist.”

    How to fix the problem

    After being notified of the problem, MediaTek released a firmware patch that device manufacturers, such as Samsung, can include in security updates for their phones.

    MediaTek published a security incident report last week that included all chipsets found to be affected by the vulnerability first detected by Donjon. (Case number 2026-20435.) If you’re so inclined, you can search for your phone on GSMArena or Kimovil to see if it’s built with one of the affected chipsets.

    The simplest thing you can do, though — for your phone’s security and your own peace of mind — is to make sure you’re up to date on your phone manufacturer’s security updates. Since MediaTek has shared the fix with its vendor partners, these manufacturers should be including it in a forthcoming security update if they haven’t already.

    A spike in cybercrime

    Cybercrime has been on the rise lately, with hackers exploiting multiple entry points.

    On January 31, blockchain security platform CertiK reported that more than $370 million in crypto assets were stolen in that month alone due to cybersecurity exploits. Of that total figure, however,  $284 million was lost in a single social engineering heist. In that incident, a single wallet holder was tricked by a phishing scam masquerading as customer support into handing over their seed phrase.

    Also: Your Android phone just got a powerful anti-theft upgrade – and I’m sighing in relief

    The new Donjon report highlights an increasingly common point-of-entry for cybercriminals: hardware security flaws. Android-targeting malware alone shot up by 67% in 2025 compared to the previous year, according to a November 2025 report from IT security firm Zscaler.

    The surging use of AI has also been causing a spike in security incidents, including phishing scams and other attacks, as well as internal mishaps arising from inadequate, organizationally imposed guardrails.



    Source: www.zdnet.com

    Android Security
    Share. Facebook Twitter Pinterest LinkedIn Tumblr Telegram Email Copy Link
    Previous ArticleBooking.com Promo Codes and Deals: Up to 20% Off
    Next Article Google Invests $1 Million in Company That Makes AI YouTube Videos for Kids
    Michael Comaous
    • Website

    Michael Comaous is a dedicated professional with a passion for technology, innovation, and creative problem-solving. Over the years, he has built experience across multiple industries, combining strategic thinking with hands-on expertise to deliver meaningful results. Michael is known for his curiosity, attention to detail, and ability to explain complex topics in a clear and approachable way. Whether he’s working on new projects, writing, or collaborating with others, he brings energy and a forward-thinking mindset to everything he does.

    Related Posts

    6 Mins Read

    LinkedIn Declares War on AI Slop, But Can It Actually Tell the Difference?

    9 Mins Read

    Xbox Just Had the Biggest Reset in Its History. Here Is What Actually Changes for Gamers

    7 Mins Read

    The First AI-Run Ransomware Attack Just Happened, and It Barely Needed a Human

    8 Mins Read

    Data Centers Are Leaving Earth: Inside Big Tech’s Orbital AI Bet

    6 Mins Read

    Qualcomm’s New Wearable Chip Solves the Easy Problem. The Hard One Is Still Wide Open

    7 Mins Read

    Why States, Not Washington, May Solve the Data Center Water Fight

    Top Posts

    Best Stores for Buying MP3 and Digital Music You Can Keep Forever

    August 2, 2025100 Views

    How to Block Twitch Ads with uBlock Origin (2026 Guide)

    June 15, 202640 Views

    uBlock Origin on Brave: Do You Need It? (2026 Setup Guide)

    June 15, 202629 Views
    Stay In Touch
    • Facebook

    Subscribe to Updates

    Get the latest tech news from FooBar about tech, design and biz.

    Most Popular

    Best Stores for Buying MP3 and Digital Music You Can Keep Forever

    August 2, 2025821 Views

    Discord will require a face scan or ID for full access next month

    February 9, 2026770 Views

    Trade in your old phone and get up to $1,100 off a new iPhone 17 at AT&T – here’s how

    September 10, 2025378 Views
    Our Picks

    The Hisense A10 Is an E Ink Phone With a Detachable Color Screen, and It Might Be Onto Something

    July 15, 2026

    Best Quickscope Sniper in COD Mobile: DL Q33 vs Locus vs LW3 Tundra

    July 14, 2026

    LinkedIn Declares War on AI Slop, But Can It Actually Tell the Difference?

    July 13, 2026

    Subscribe to Updates

    Get the latest creative news from FooBar about art, design and business.

    Facebook
    • About Us
    • Contact us
    • Privacy Policy
    • Disclaimer
    • Terms and Conditions
    © 2026 GeekBlog

    Type above and press Enter to search. Press Esc to cancel.