android
Просмотров: 47,507
49 обсуждают
Популярные
Новые
💀 Покупаешь новый Android — получаешь вирус в прошивке
На 13 000+ устройствах обнаружили вредонос Keenadu, который был встроен прямо в системную прошивку. Не APK из левого Telegram-канала, а код внутри системы.
Что он может:
▪️ Полный контроль над устройством
▪️ Заражение приложений, включая криптокошельки
▪️ Установка APK с автоматической выдачей всех разрешений
▪️ Отслеживание действий даже в режиме инкогнито
🦠 И самое неприятное — эксперты нашли его следы в системных модулях, связанных с разблокировкой по лицу. Это уже не просто кража крипты, а риск утечки биометрии.
🏭 Как это происходит?
Проблема — в «цепочке поставок». Вредонос внедряют на этапе разработки или сборки:
▪️ заражаются библиотеки кода
▪️ ломаются серверы обновлений на заводах
▪️ аутсорс-сборщики заливают «модифицированный» Android
📦 Отдельный риск — перекупы, которые вскрывают коробки для «русификации» или установки обязательного софта. Вместе с локализацией можно получить и бонусный троян.
🇨🇳 Любопытная деталь: вирус отключается, если обнаруживает китайский язык в системе. Система «свой-чужой» работает безошибочно.
Вывод простой:
холодный кошелёк бессмысленен, если само устройство уже заражено.
Проверяйте прошивку, избегайте «серых» поставок и не ставьте APK из непонятных источников.
#Android #CyberSecurity #CryptoSecurity #malware #MISTERROBOT
Подписывайтесь — цифровая гигиена важнее хайпа.
Что он может:
▪️ Полный контроль над устройством
▪️ Заражение приложений, включая криптокошельки
▪️ Установка APK с автоматической выдачей всех разрешений
▪️ Отслеживание действий даже в режиме инкогнито
🦠 И самое неприятное — эксперты нашли его следы в системных модулях, связанных с разблокировкой по лицу. Это уже не просто кража крипты, а риск утечки биометрии.
🏭 Как это происходит?
Проблема — в «цепочке поставок». Вредонос внедряют на этапе разработки или сборки:
▪️ заражаются библиотеки кода
▪️ ломаются серверы обновлений на заводах
▪️ аутсорс-сборщики заливают «модифицированный» Android
📦 Отдельный риск — перекупы, которые вскрывают коробки для «русификации» или установки обязательного софта. Вместе с локализацией можно получить и бонусный троян.
🇨🇳 Любопытная деталь: вирус отключается, если обнаруживает китайский язык в системе. Система «свой-чужой» работает безошибочно.
Вывод простой:
холодный кошелёк бессмысленен, если само устройство уже заражено.
Проверяйте прошивку, избегайте «серых» поставок и не ставьте APK из непонятных источников.
#Android #CyberSecurity #CryptoSecurity #malware #MISTERROBOT
Подписывайтесь — цифровая гигиена важнее хайпа.
🚨 “开箱即中毒”:为什么新买的 Android 手机不一定安全?
各位朋友,资产安全的第一步不是交易密码,而是设备本身的“洁净度”。近日,网络安全专家发现了一种名为 Keenadu 的恶意软件,已感染超过 13,000 台 Android 设备。
最危险的地方在哪里?
该病毒在手机送达你手中之前就已经存在了。这是一种“供应链攻击”:病毒在工厂生产、系统刷机或预售设置阶段,就已被植入到固件中。
Keenadu 对加密货币持有者有何威胁?
虽然目前该病毒主要用于广告欺诈,但其技术权限令人担忧:
全面控制: 它伪装成系统组件,获取最高权限。深度监视: 能够读取短信、照片,甚至监控 Chrome 浏览器的无痕模式搜索。静默安装: 它可以自动下载第三方 APK 文件,并绕过用户直接授权。
对于加密用户来说,这是“红色警报”。如果病毒拥有系统级访问权限,理论上它可以拦截助记词、剪贴板内容或应用屏幕截图。
如何保护你的资产?
🔹 通过正规渠道购买。 避免购买来源不明、刷入所谓“定制版固件”的非正规渠道设备。
🔹 使用冷钱包。 对于大额资产,建议使用与手机系统物理隔离的硬件钱包(如 Ledger, Trezor 等)。
🔹 警惕权限申请。 如果一个系统应用(如“计算器”)突然要求访问通讯录或相机,请务必提高警惕。
🔹 启用双重身份验证 (2FA)。 始终使用 Google Authenticator 或硬件密钥(如 Yubikey),避免仅依赖短信验证。
请记住:在加密世界中,你就是自己的银行。保持警惕!🛡️
#币安 #Binance #网络安全 #加密安全 #Android
各位朋友,资产安全的第一步不是交易密码,而是设备本身的“洁净度”。近日,网络安全专家发现了一种名为 Keenadu 的恶意软件,已感染超过 13,000 台 Android 设备。
最危险的地方在哪里?
该病毒在手机送达你手中之前就已经存在了。这是一种“供应链攻击”:病毒在工厂生产、系统刷机或预售设置阶段,就已被植入到固件中。
Keenadu 对加密货币持有者有何威胁?
虽然目前该病毒主要用于广告欺诈,但其技术权限令人担忧:
全面控制: 它伪装成系统组件,获取最高权限。深度监视: 能够读取短信、照片,甚至监控 Chrome 浏览器的无痕模式搜索。静默安装: 它可以自动下载第三方 APK 文件,并绕过用户直接授权。
对于加密用户来说,这是“红色警报”。如果病毒拥有系统级访问权限,理论上它可以拦截助记词、剪贴板内容或应用屏幕截图。
如何保护你的资产?
🔹 通过正规渠道购买。 避免购买来源不明、刷入所谓“定制版固件”的非正规渠道设备。
🔹 使用冷钱包。 对于大额资产,建议使用与手机系统物理隔离的硬件钱包(如 Ledger, Trezor 等)。
🔹 警惕权限申请。 如果一个系统应用(如“计算器”)突然要求访问通讯录或相机,请务必提高警惕。
🔹 启用双重身份验证 (2FA)。 始终使用 Google Authenticator 或硬件密钥(如 Yubikey),避免仅依赖短信验证。
请记住:在加密世界中,你就是自己的银行。保持警惕!🛡️
#币安 #Binance #网络安全 #加密安全 #Android
Apple's iOS 26.3 update brings a built-in tool for easy iPhone to Android data transfer via QR code, no third-party apps needed.
Users can migrate photos, messages, contacts, and apps, though health data and locked notes aren't supported.
#apple #ios263 #android #technews #certifiedpakistan
Users can migrate photos, messages, contacts, and apps, though health data and locked notes aren't supported.
#apple #ios263 #android #technews #certifiedpakistan
Google expands Quick Share to Android devices Share files with iPhones and MacBooks easily, At Certified Pakistan, tech updates
Disclaimer: This information has been sourced from publicly available sources
#google #android #technology #tech #certifiedpakistan
Disclaimer: This information has been sourced from publicly available sources
#google #android #technology #tech #certifiedpakistan
Something that may cheer up you guys in these terrible #crypto days.
The new upgraded #Android version of the 📱 #1inchWallet is out!
👉 Read more: https://blog.1inch.io/aggregation-of-on-ramp-providers-and-nft-support-added-to-the-1inch-wallet-for-android-e3d97befaf3b
The new upgraded #Android version of the 📱 #1inchWallet is out!
👉 Read more: https://blog.1inch.io/aggregation-of-on-ramp-providers-and-nft-support-added-to-the-1inch-wallet-for-android-e3d97befaf3b
🥳 Hooray! HD wallet support is now available to #1inchWallet users on #Android!
Also, we improved file backup to ensure you won't lose access to your 💰 funds and upgraded the process of importing wallets.
🤖 Check out this update here: https://play.google.com/store/apps/details
Also, we improved file backup to ensure you won't lose access to your 💰 funds and upgraded the process of importing wallets.
🤖 Check out this update here: https://play.google.com/store/apps/details
Over Protocol #Airdrop 🎁🎁
Download App : https://mobile.over.network/en/invite/PD3PUE0I3S
Steps down👇
1. Enter the email you used to join the waiting list.(New users can also Join)
3. Connect to Twitter and follow (+500 Points) after clicking "Missions."
4. Refer friends to increase earnings
Enter this Invite Code to get 1000 Points : PD3PUE0I3S
Upon mainnet, points will be converted to $OVER Tokens #Write2Earn #PlayStore #android #OverProtocol $
Download App : https://mobile.over.network/en/invite/PD3PUE0I3S
Steps down👇
1. Enter the email you used to join the waiting list.(New users can also Join)
3. Connect to Twitter and follow (+500 Points) after clicking "Missions."
4. Refer friends to increase earnings
Enter this Invite Code to get 1000 Points : PD3PUE0I3S
Upon mainnet, points will be converted to $OVER Tokens #Write2Earn #PlayStore #android #OverProtocol $
Notification settings fix for android:
Guys, listen , if you're like me and have disabled all notifications except trading ones BUT still keep receiving market updates, follow these instructions :
There are another batch of settings ( not sure why they're hiding them so hard ) ...
Go to home page / start screen
At the top right, there is a "bell" looking icon.
Click it.
Then click PRICE ALERTS and then there's another SETTINGS icon in the top right. Disable notifications there !
Problem solved !
Thank you BINANCE for hiding this so well, we wouldn't want people to find it by accident.
#binance #binancesupport #android
Guys, listen , if you're like me and have disabled all notifications except trading ones BUT still keep receiving market updates, follow these instructions :
There are another batch of settings ( not sure why they're hiding them so hard ) ...
Go to home page / start screen
At the top right, there is a "bell" looking icon.
Click it.
Then click PRICE ALERTS and then there's another SETTINGS icon in the top right. Disable notifications there !
Problem solved !
Thank you BINANCE for hiding this so well, we wouldn't want people to find it by accident.
#binance #binancesupport #android
Meet a joint promotion campaign for the #1inchWallet " data-hashtag="#1inchWallet" class="tag">#1inchWallet’s #Android version with 💸 fiat-to-crypto on-ramp provider #Banxa & #MoonPay.
👉 Join: https://1inch.network/wallet
➡️ More info: https://blog.1inch.io/1inchs-black-friday-promo-offers-with-banxa-and-moonpay-6559e6e9d088
#1inch
👉 Join: https://1inch.network/wallet
➡️ More info: https://blog.1inch.io/1inchs-black-friday-promo-offers-with-banxa-and-moonpay-6559e6e9d088
#1inch
⚠️ Beware of the new malware RatOn. It targets Android devices, hacks wallets (MetaMask, Trust, Phantom) and banking apps, and can even lock your screen for ransom. Active since July, spreading through fake TikTok apps.
When your whole life is on your phone, device security must come first. Get proper antivirus and run regular checks.
#scam #Android #Hack #tiktok #fake
When your whole life is on your phone, device security must come first. Get proper antivirus and run regular checks.
#scam #Android #Hack #tiktok #fake
Security researchers have uncovered a novel attack method on Android devices called “Pixnapping”, which could put crypto users at serious risk.
#CyberSecurity #pixnapping #Android #crypto_wallets #seed_phrases
#CyberSecurity #pixnapping #Android #crypto_wallets #seed_phrases
$minima is protecting the world from ruins with WOTS & SHA3-256 Android could use the #Minima chip for its quantum-proof security, protecting user data against future threats. The chip enables decentralized apps, aligning with #Android 's open ethos. Its low-power design ensures efficiency across diverse devices, future-proofing Android's tech.
Unity telah merilis patch darurat untuk kerentanan di engine game mereka yang memungkinkan eksekusi kode lokal pada perangkat Android, berpotensi membahayakan data sensitif seperti dompet crypto dalam game blockchain. Bug ini aktif sejak 2017 dan memengaruhi platform seperti Android, Windows, macOS, dan Linux, meski belum ada bukti eksploitasi. Selain itu, kerugian akibat peretasan crypto pada September 2025 mencapai $127 juta, dengan insiden besar melibatkan proyek seperti UXLINK ($44 juta), SwissBorg ($41,5 juta), dan Solana.
Dari perspektif psikologi pasar, investor merasakan campuran kehati-hatian dan lega atas patch ini, yang meredakan kekhawatiran risiko keamanan jangka panjang. Diskusi di media sosial bergeser dari kecemasan eksploitasi potensial ke apresiasi atas respons proaktif, meski insiden peretasan baru-baru ini memperkuat kebutuhan keamanan siber yang lebih baik.
Secara historis, kerentanan serupa di software populer memicu patch darurat dan kegelisahan pasar sementara, seperti kasus keamanan OS mobile yang menyebabkan respons industri cepat. Ke depan, penanganan Unity bisa memulihkan kepercayaan pada platform game blockchain, tapi penundaan atau eksploitasi baru berpotensi membuka risiko finansial lebih luas dan pengawasan regulator.
Efek riaknya: Patch ini mengurangi ancaman aplikasi berbahaya mencuri dompet crypto, menetapkan standar keamanan industri yang mendorong platform lain mempercepat pembaruan. menekankan kerentanan sistemik yang masih ada, mendorong kewaspadaan di ekosistem secara keseluruhan.
Rekomendasi investasi: "Buy" dengan strategi masuk bertahap ke aset crypto terkait game blockchain yang aman, gunakan indikator seperti MA 20-hari dan Bollinger Bands untuk titik entry selama dip. Kelola risiko dengan stop-loss 5-8% di bawah entry, pantau RSI, MACD, serta sentimen pasar untuk penyesuaian jika muncul berita negatif.
#game #Wallet #Android
Dari perspektif psikologi pasar, investor merasakan campuran kehati-hatian dan lega atas patch ini, yang meredakan kekhawatiran risiko keamanan jangka panjang. Diskusi di media sosial bergeser dari kecemasan eksploitasi potensial ke apresiasi atas respons proaktif, meski insiden peretasan baru-baru ini memperkuat kebutuhan keamanan siber yang lebih baik.
Secara historis, kerentanan serupa di software populer memicu patch darurat dan kegelisahan pasar sementara, seperti kasus keamanan OS mobile yang menyebabkan respons industri cepat. Ke depan, penanganan Unity bisa memulihkan kepercayaan pada platform game blockchain, tapi penundaan atau eksploitasi baru berpotensi membuka risiko finansial lebih luas dan pengawasan regulator.
Efek riaknya: Patch ini mengurangi ancaman aplikasi berbahaya mencuri dompet crypto, menetapkan standar keamanan industri yang mendorong platform lain mempercepat pembaruan. menekankan kerentanan sistemik yang masih ada, mendorong kewaspadaan di ekosistem secara keseluruhan.
Rekomendasi investasi: "Buy" dengan strategi masuk bertahap ke aset crypto terkait game blockchain yang aman, gunakan indikator seperti MA 20-hari dan Bollinger Bands untuk titik entry selama dip. Kelola risiko dengan stop-loss 5-8% di bawah entry, pantau RSI, MACD, serta sentimen pasar untuk penyesuaian jika muncul berita negatif.
#game #Wallet #Android
Google Fined $35 Million in Australia: Regulator Cracks Down on Monopolistic Practices
Australia has delivered a strong blow to tech giant Google. The company will pay a fine of 55 million Australian dollars ($35.8 million USD) after the country’s competition watchdog found it had abused its market power.
💻 Deals with Telecom Operators Restricted Competition
The Australian Competition and Consumer Commission (ACCC) revealed that between 2019–2021, Google signed deals with the country’s two largest telecom operators – Telstra and Optus. These agreements ensured that the Google Search app was pre-installed on Android devices, significantly reducing the visibility of competing search providers.
According to ACCC chair Gina-Cass Gottlieb, this move undermined fair competition and limited choice for millions of Australians.
⚖️ Google Admits Misconduct
Google acknowledged that its practices harmed competition and agreed to pay the fine. The company also promised to provide device manufacturers with greater freedom to install alternative browsers and search apps.
“We are committed to offering flexibility while maintaining features that help innovate and remain competitive against Apple,” a Google spokesperson said.
Telstra and Optus also confirmed they are cooperating with the regulator and will stop making similar deals with Google starting in 2024.
🎮 Google and Apple Under Pressure Over App Stores
The ruling comes just days after another setback for Google. An Australian court sided with Epic Games, the creators of Fortnite, who argued that Apple and Google abused their control over app distribution and in-app payments.
According to Epic, both giants imposed excessive fees and blocked alternative app stores, undermining fair competition in the app market. The judgment suggests that app stores lacked safeguards to protect competitive practices.
📉 More Troubles for Alphabet
The fine in Australia caps off a difficult week for Google’s parent company Alphabet, which is facing mounting global criticism and regulatory scrutiny over its monopolistic practices.
❓ Do you think actions like this will finally open the door for smaller competitors, or will Google remain the untouchable leader?
#Google , #Australia , #DigitalMarket , #worldnews , #Android
Stay one step ahead – follow our profile and stay informed about everything important in the world of cryptocurrencies!
Notice:
,,The information and views presented in this article are intended solely for educational purposes and should not be taken as investment advice in any situation. The content of these pages should not be regarded as financial, investment, or any other form of advice. We caution that investing in cryptocurrencies can be risky and may lead to financial losses.“
💻 Deals with Telecom Operators Restricted Competition
The Australian Competition and Consumer Commission (ACCC) revealed that between 2019–2021, Google signed deals with the country’s two largest telecom operators – Telstra and Optus. These agreements ensured that the Google Search app was pre-installed on Android devices, significantly reducing the visibility of competing search providers.
According to ACCC chair Gina-Cass Gottlieb, this move undermined fair competition and limited choice for millions of Australians.
⚖️ Google Admits Misconduct
Google acknowledged that its practices harmed competition and agreed to pay the fine. The company also promised to provide device manufacturers with greater freedom to install alternative browsers and search apps.
“We are committed to offering flexibility while maintaining features that help innovate and remain competitive against Apple,” a Google spokesperson said.
Telstra and Optus also confirmed they are cooperating with the regulator and will stop making similar deals with Google starting in 2024.
🎮 Google and Apple Under Pressure Over App Stores
The ruling comes just days after another setback for Google. An Australian court sided with Epic Games, the creators of Fortnite, who argued that Apple and Google abused their control over app distribution and in-app payments.
According to Epic, both giants imposed excessive fees and blocked alternative app stores, undermining fair competition in the app market. The judgment suggests that app stores lacked safeguards to protect competitive practices.
📉 More Troubles for Alphabet
The fine in Australia caps off a difficult week for Google’s parent company Alphabet, which is facing mounting global criticism and regulatory scrutiny over its monopolistic practices.
❓ Do you think actions like this will finally open the door for smaller competitors, or will Google remain the untouchable leader?
#Google , #Australia , #DigitalMarket , #worldnews , #Android
Stay one step ahead – follow our profile and stay informed about everything important in the world of cryptocurrencies!
Notice:
,,The information and views presented in this article are intended solely for educational purposes and should not be taken as investment advice in any situation. The content of these pages should not be regarded as financial, investment, or any other form of advice. We caution that investing in cryptocurrencies can be risky and may lead to financial losses.“
🚨 ANDROID APP STORES UNBLOCKING MAJOR EXCHANGE! 🚨
The regulatory tide is turning fast. Major Android application stores across the country are now allowing downloads of the leading exchange's app.
This means seamless access for millions of users directly through Huawei and all other Android marketplaces. Frictionless onboarding is back online! This is a massive infrastructure signal for market accessibility. Get ready for inflows.
#CryptoAdoption #ExchangeNews #Android #MarketAccess 🚀
The regulatory tide is turning fast. Major Android application stores across the country are now allowing downloads of the leading exchange's app.
This means seamless access for millions of users directly through Huawei and all other Android marketplaces. Frictionless onboarding is back online! This is a massive infrastructure signal for market accessibility. Get ready for inflows.
#CryptoAdoption #ExchangeNews #Android #MarketAccess 🚀
Herkese selam arkadaşlar.🖐️
🧙Sizlere #Greencart ne demek ve #GreencartdApp 'inden bahsetmek istiyorum biraz.
✔️Greencart : Sürdürülebilirlik ve sağlıklı yaşamı teşvik etmeyi amaçlayan çeşitli girişimler ve projelerle ilişkilendirilen bir terimdir.
✔️Greencart dApp: Bu merkeziyetsiz uygulama, süpermarketlerde veya yerel mağazalarda yapılan sürdürülebilir alışverişler için kullanıcılara ödül verir. Kullanıcılar, fişlerini yükleyerek her çevre dostu alışveriş için B3TR tokenleri kazanabilir. Platform, yapay zeka kullanarak fişleri analiz eder ve satın alınan ürünlerin sürdürülebilirliğini değerlendirir.
🧙Yeni başlayanlar için market alışveriş fişlerinizi ;
🔸20 saatte 2 fiş olacak şeklinde yükleyebiliyorsunuz. (Ama %20 daha fazla kazanıyorsunuz)
🔸Sisteme 7 fiş girdiğinizde. Artık 20 saat beklemeksizin günde 4 fiş sisteme girebileceksiniz.
🔸Bir alışveriş fişinden minumum 2 $B3TR kazanabiliyorsunuz. Meyve-sebzeler , organik ürünler , vegan ürünler daha fazla kazandırıyor.
🔸Bir günde dört fişin sisteme girme süresi 20 saniye sürüyor. Ayda $100 ile $300 arasında kazanabiliyorsunuz.
💰Ayrıca en güzel kısım ise hemen usdt çevirebilme imkanı sağlaması. Yani kazancınızı hemen çekebiliyorsunuz.
💰Ayrıca staking özelliği geldi. Kazancınızı stake edebilirsiniz. Ekstra kazanlar sağlayabilirsiniz.
🔸Yakında B3TR'nizi kullanarak Amazon , Netflix gibi ünlü markaların hediye kartı ürünlerini satın alabileceksiniz.
#Staking #IOS #Android
🧙Sizlere #Greencart ne demek ve #GreencartdApp 'inden bahsetmek istiyorum biraz.
✔️Greencart : Sürdürülebilirlik ve sağlıklı yaşamı teşvik etmeyi amaçlayan çeşitli girişimler ve projelerle ilişkilendirilen bir terimdir.
✔️Greencart dApp: Bu merkeziyetsiz uygulama, süpermarketlerde veya yerel mağazalarda yapılan sürdürülebilir alışverişler için kullanıcılara ödül verir. Kullanıcılar, fişlerini yükleyerek her çevre dostu alışveriş için B3TR tokenleri kazanabilir. Platform, yapay zeka kullanarak fişleri analiz eder ve satın alınan ürünlerin sürdürülebilirliğini değerlendirir.
🧙Yeni başlayanlar için market alışveriş fişlerinizi ;
🔸20 saatte 2 fiş olacak şeklinde yükleyebiliyorsunuz. (Ama %20 daha fazla kazanıyorsunuz)
🔸Sisteme 7 fiş girdiğinizde. Artık 20 saat beklemeksizin günde 4 fiş sisteme girebileceksiniz.
🔸Bir alışveriş fişinden minumum 2 $B3TR kazanabiliyorsunuz. Meyve-sebzeler , organik ürünler , vegan ürünler daha fazla kazandırıyor.
🔸Bir günde dört fişin sisteme girme süresi 20 saniye sürüyor. Ayda $100 ile $300 arasında kazanabiliyorsunuz.
💰Ayrıca en güzel kısım ise hemen usdt çevirebilme imkanı sağlaması. Yani kazancınızı hemen çekebiliyorsunuz.
💰Ayrıca staking özelliği geldi. Kazancınızı stake edebilirsiniz. Ekstra kazanlar sağlayabilirsiniz.
🔸Yakında B3TR'nizi kullanarak Amazon , Netflix gibi ünlü markaların hediye kartı ürünlerini satın alabileceksiniz.
#Staking #IOS #Android
Forget the PIN: How Your Stolen Phone Can Empty Your Crypto Wallet
Hey! Imagine this: you lost your phone or it got stolen. You think, "Scary, but not critical. I have a PIN, Face ID, and I didn’t save my MetaMask seed phrase anywhere." It seems like your accounts are safe.
Well, not quite. Researchers from Ledger have just proven that physical access to your Android smartphone = access to all your hot wallets on it. This isn’t about hacking software—it’s a direct hardware-level attack on the phone’s processor itself.
What did they do?
They took a popular MediaTek chip (found in many mid-range smartphones) and used electromagnetic pulses to "break" it at the most fundamental level—during boot-up. It’s like not picking the lock but remotely reprogramming it to open on command.
The technical gist (in short):
A special device directs electromagnetic pulses into the chip.This triggers a glitch in the most protected part—the boot ROM.Using this glitch, attackers can gain full control over the processor (the highest privilege level, EL3).That’s it. After that, they can easily extract private keys from any installed wallet (Trust Wallet, MetaMask, etc.).
The whole process takes a few minutes, and the success rate, according to their data, is up to 1%. For an attacker who has your device, that’s more than enough.
Why does this matter for you and me?
Phones get stolen and lost. This isn’t some mythical internet threat—it’s an everyday reality.Hot wallets on phones are at risk. Ledger clearly states that their hardware wallets (and similar devices) are unaffected because they have a secure chip designed specifically to counter such attacks.The chipmaker (MediaTek) essentially confirmed: this chip was made for mass-market consumers, not for storing critically important data. Financial operations require specialized protection.
The key takeaway from the researchers:
A modern smartphone is a convenient "wallet" for daily spending, but not a "safe" for long-term holdings.
Keeping significant amounts in hot wallets on your phone after this study is a huge risk.
Question for you: How do you distribute your assets between hot and hardware wallets after news like this? Do you trust your smartphone to store significant sums?
#Android #Web3 #crypto
Well, not quite. Researchers from Ledger have just proven that physical access to your Android smartphone = access to all your hot wallets on it. This isn’t about hacking software—it’s a direct hardware-level attack on the phone’s processor itself.
What did they do?
They took a popular MediaTek chip (found in many mid-range smartphones) and used electromagnetic pulses to "break" it at the most fundamental level—during boot-up. It’s like not picking the lock but remotely reprogramming it to open on command.
The technical gist (in short):
A special device directs electromagnetic pulses into the chip.This triggers a glitch in the most protected part—the boot ROM.Using this glitch, attackers can gain full control over the processor (the highest privilege level, EL3).That’s it. After that, they can easily extract private keys from any installed wallet (Trust Wallet, MetaMask, etc.).
The whole process takes a few minutes, and the success rate, according to their data, is up to 1%. For an attacker who has your device, that’s more than enough.
Why does this matter for you and me?
Phones get stolen and lost. This isn’t some mythical internet threat—it’s an everyday reality.Hot wallets on phones are at risk. Ledger clearly states that their hardware wallets (and similar devices) are unaffected because they have a secure chip designed specifically to counter such attacks.The chipmaker (MediaTek) essentially confirmed: this chip was made for mass-market consumers, not for storing critically important data. Financial operations require specialized protection.
The key takeaway from the researchers:
A modern smartphone is a convenient "wallet" for daily spending, but not a "safe" for long-term holdings.
Keeping significant amounts in hot wallets on your phone after this study is a huge risk.
Question for you: How do you distribute your assets between hot and hardware wallets after news like this? Do you trust your smartphone to store significant sums?
#Android #Web3 #crypto
Войдите, чтобы посмотреть больше материала