Firmware Vulnerabilities Found in Big Brand Android Models

Security researchers revealed at DefCon last week around 47 vulnerabilities in the firmware and apps of 25 Android smartphone models, some even belonging to big brands including ZTE, Sony, Nokia, LG, Asus, and Alcatel.

Some of the flaws can permit the attacker to access or send text messages from the user’s phone, take screenshots, record videos of the device’s screen, access the user’s contacts list, force installation of third-party arbitrary apps without the user’s knowledge or consent, and even wipe user data.

Angelos Stavrou, CEO of Kryptowire, said that the sheer number of phone models and firmware makes it very difficult for companies to employ best-effort manual testing and evaluations.

Source: Bleeping Computer