Premium
This is an archive article published on August 11, 2016

QuadRooter Security issue: Google says most devices are protected

Google has responded to the QuadRooter vulnerability, saying devices with Apps Verification are protected.

google-preferred-btn
Google, Google QuadRooter, Google Apps Verification, Google Verified apps, QuadRooter Qualcomm, QuadRooter security issue, QuadRooter security patch Google said it is aware of the Quadrooter issue, and Android phones running the latest security patch are already protected against it. (Source: Reuters)

Google has responded to the QuadRooter vulnerability, that is believed to affect over 900 million Qualcomm chipset-powered Android phones.  The Search giant said it is aware of the issue, and Android phones running the latest security patch are already protected against three of the security flaws pointed out.

Google issued a statement to AndroidCentral and a spokesperson for the company said, “The fourth vulnerability, CVE-2016-5340, will be addressed in an upcoming Android security bulletin, though Android partners can take action sooner by referencing the public patch Qualcomm has provided.” Google also added the Verify Apps and SafetyNet protections are designed to block any such application which has malware and can block apps, which choose to exploit vulnerabilities like QuadRooter.

The apps verification feature has been part of Google’s Android 4.2 Jelly Bean and is enabled by default. Apps Verification is useful because it ensures that downloads from outside the Google Play Store are scanned for malware before and after you install them on your device. Google says this works for all apps and ensures the QuadRooter vulnerability is not exploited by any malicious app.

The security issue was revealed security firm Check Point Software Technologies at the annual security conference DEF CON 24 in Las Vegas, Nevada. According to the report, QuadRooter is a set of four vulnerabilities affecting Android devices running on Qualcomm chipsets. Using any of these four vulnerabilities, an attacker can exploit a device by gaining root access to a user’s phone, or trigger privilege escalation by the use of a malicious app.

Also read: QuadRooter vulnerability leaves 900 mn Qualcomm-powered Android phones at risk

The security firm had found the issue existed with Qualcomm’s software drivers that come with its chipset, and it can only be fixed with a software patch from the carrier, who can only push it after receiving a patch from Qualcomm.  Qualcomm was told about these vulnerabilities by the team in April this year.

 

© IE Online Media Services Pvt Ltd
Latest Comment
Post Comment
Read Comments
Advertisement
Top Stories
The participation in the National Javelin Day, to commemorate Neeraj Chopra’s Tokyo Olympics gold medal in 2021, has grown sevenfold in just three years — from 700 in 2022 to 4,974 in 2025. (AP File)
Podium to playground: How big medals fuelled excellence in javelin, shooting, badminton
Ikkis is now in theatres
In a post-Dhurandhar world, Sriram Raghavan stages an anti-war rebellion with Ikkis
Anand Mahindra MTV
Anand Mahindra says ‘I want my MTV’ as iconic music channels go off air after 44 years: ‘End of an era’
India (IND U19) vs South Africa (SA U19) 1st Youth ODI Live:
IND U19 vs SA U19, 1st Youth ODI 2026 ​Live Cricket Score
Energy transition, renewable energy, renewable energy sources, renewable energy transition, solar energy, wind energy, editorial, Indian express, opinion news, current affairs
Energy transition will need more than chasing the sun and harnessing the wind
Live Blog
Loading Taboola...
Advertisement