Ledger researchers have identified a security vulnerability in Android chips that could allow complete control over smartphones, putting Web3 wallets at significant risk, especially from physical attacks. Ledger’s Donjon research team revealed that hardware fault injection techniques can bypass fundamental security checks on the chip, enabling full takeover. The company clarified that this flaw does not affect Ledger’s own hardware wallets but highlights the dangers of relying solely on smartphone-based “hot” wallets for digital asset security. The vulnerability was found in MediaTek’s Dimensity 7300 (MT6878) chip, widely used in many Android devices. Ledger emphasized that even the latest smartphone chips are not fully secure against physical attacks and are therefore unsuitable for protecting private keys. MediaTek was informed of the flaw in May and responded positively, notifying affected phone manufacturers. Web3 wallets allow users to control their private keys for blockchain applications and cryptocurrencies, but hardware-level security flaws can lead to theft or loss of sensitive information. Cybersecurity experts recommend prioritizing hardware wallets, which offer greater security than smartphone wallets. Following this discovery, users are advised to exercise caution and adopt extra protective measures for their digital assets, particularly when using mobile-only wallets. Phone manufacturers and chip makers must also focus on enhancing product security to safeguard user data.
Source: binance
