Checkpoint has disclosed 4 new attack vectors that impact the processors that are built into many popular Android smartphones. The vulnerability in the drivers shipped with the baseband processor (the processor that controls the actual wireless radio) allows a malicious app to escalate its privileges and take over the device, effectively giving the attacker full root control over the device.
Which devices are affected?
Many of the most popular Android phones, including:
The BlackPhone 1 and 2
The Google Nexus 5X, 6, and 6P
The Samsung Galaxy S7 and S7 Edge
The Oneplus One, 2 and 3
The HTC One, M9 and V10
The Blackberry Priv
The Sony Xperia Z Ultra
The Motorola Moto X
I have one of these devices. What can I do to protect myself?
1. Install updates as soon as they become available.
2. Do not sideload apps from untrusted app stores.
3. Do not install any apps that you do not need.
4. Do not use unsecure wifi. If you must use secure wifi, use a secure VPN to harden your device against injection.
To test if your device is vulnerable, Checkpoint has created a tool. You can find it here: