Gizbot Logo Gizbot Logo Light
A Oneindia Venture
Get Updates
Get notified on the latest car launches, bike deals, and insights!

Choose Language

Home
News

Hackers Target Android Users Through Zero-Day Vulnerability in Qualcomm Snapdragon Chips

By
Add as a preferred source on Google

Qualcomm revealed on Monday that hackers exploited an unknown security flaw in several of its chipsets used in popular Android devices. This zero-day vulnerability, identified as CVE-2024-43047, was not known to Qualcomm when it was abused. Google's Threat Analysis Group (TAG) and Amnesty International's Security Lab confirmed the exploitation.

The U.S. cybersecurity agency CISA has added this Qualcomm flaw to its list of vulnerabilities that are known to be exploited. However, details about the individuals or groups exploiting this vulnerability remain scarce. It is unclear who the targets were or the motives behind these hacking campaigns.

Hackers Exploit Zero-Day Bug in Qualcomm Snapdragon Chips on Android

Limited Exploitation and Affected Devices

According to Qualcomm, the exploitation appears to be limited and targeted. This suggests that specific individuals were likely targeted rather than a broad range of users. The affected chipsets include 64 different models, notably the Snapdragon 8 (Gen 1) mobile platform. This chipset is found in numerous Android phones from brands like Motorola, Samsung, OnePlus, Oppo, Xiaomi, and ZTE.

Catherine Baker, a spokesperson for Qualcomm, praised Google Project Zero and Amnesty International Security Lab for their coordinated disclosure practices. This collaboration enabled Qualcomm to develop fixes for the vulnerability promptly. The company has made these fixes available to its customers since September 2024.

Awaiting Further Details

Amnesty International's spokesperson Hajira Maryam mentioned that research regarding this vulnerability will be released soon. Meanwhile, Google spokesperson Kimberly Samra stated that TAG currently has no additional information to provide.

Qualcomm has passed the responsibility of releasing patches to Android device manufacturers using the affected chipsets. These manufacturers must now ensure their customers receive updates to protect against potential threats.

The involvement of Google and Amnesty International in investigating this zero-day underlines its significance. Their focus on "limited, targeted exploitation" indicates a more focused attack rather than widespread targeting.

This situation highlights the ongoing challenges in cybersecurity where vulnerabilities can be exploited before they are even discovered by manufacturers. It underscores the importance of swift action and collaboration among tech companies and security researchers to safeguard users worldwide.

Source

Comments

More from GizBot

Best Mobiles in India

Story first published: Friday, October 11, 2024, 10:00 [IST]
Other articles published on Oct 11, 2024

Explore the latest in technology, gadgets, and innovation. Stay updated with smartphone launches, reviews, comparisons, and expert insights.

Learn More

About Us
Contact Us
Feedback
Grievance

Terms & Policies

Terms of Service
Privacy Policy
Code of Business
Cookie Policy
Corrections Policy

© 2025 Greynium Information Technologies Pvt. Ltd.

All Rights Reserved.

Notifications
Settings
Clear Notifications
Notifications
Use the toggle to switch on notifications
  • Block for 8 hours
  • Block for 12 hours
  • Block for 24 hours
  • Don't block
Gender
Select your Gender
  • Male
  • Female
  • Others
Age
Select your Age Range
  • Under 18
  • 18 to 25
  • 26 to 35
  • 36 to 45
  • 45 to 55
  • 55+
Sign Out
X