Gal Beniami, an Israeli mobile security researcher, has made waves in Android security with his research on brute forcing the Full Disk Encryption of Android phones using Qualcomm chipsets and running the Android Lollipop or Marshmallow OS.
The potential impact of this poses a threat for millions of users of phones that use the Snapdragon chipset and to Qualcomm’s 42% market share. This security flaw risks the personal and professional data of Qualcomm’s users.
Beniamini’s research also highlight some of the problems with the Android security updates and the, at times fractious, relationship between Google and Android OEMs. Google and Qualcomm claim this issue was resolved with Android security patches from January and May of this year. It may be the case that some users are behind on their Android security updates, however, Google and Qualcomm will feel absolved of their responsibilities.
Codified Security is here to help make your mobile app secure whether it’s for iOS, Android app security testing, or to make sure you’re clearing the OWASP Mobile Top 10. For mobile app security testing in under a minute try out Codified Security.