News: Project Zero Finds iPhone & Android Open to Bugs in Broadcom's Wi-Fi Chips
No one is safe anymore, it seems. Google's Project Zero has just uncovered how easy it is for attackers to target your phone's Wi-Fi chip, which is essentially a mini processor for Wi-Fi that detects and processes networks.Most iPhone and Android phones run on a Broadcom Wi-Fi system on a chip (SoC). Google's security researcher Gal Beniamini found a number of bugs on these SoCs, which affect the iPhone 4 all the way through to the iPhone 7, most of Google's Nexus handsets, and almost all Samsung Galaxy devices.The bugs don't stop there, either. Beniamini went on to note that Wi-Fi routers can be easy targets, too, so both sides of your phone's wireless internet connection could be vulnerable to theoretical attacks.Don't Miss: What You Should Know About the New 'Chrysaor' Android MalwareAndroid has done a lot of work to patch up its security system within the last year. Apple has also gone to great lengths to keep its systems secure, but this is where Beniamini says attackers found an opportunity to "pick the path of least resistance."Broadcom's Wi-Fi chips were the most attractive and easy target for an attacker to get past an iOS or Android security system, because Broadcom is the most commonly-used Wi-Fi SoC for mobile devices. Wi-Fi chips run on extremely complex code—complex enough that they are susceptible to vulnerabilities that an attacker could use to sneak by without ever being detected by the phone's user.According to Beniamini in his blog post on Broadcom's Wi-Fi stack:We've seen that while the firmware implementation on the Wi-Fi SoC is incredibly complex, it still lags behind in terms of security. Specifically, it lacks all basic exploit mitigations - including stack cookies, safe unlinking and access permission protection (by means of an MPU). Image via Project Zero Two actual exploits that utilized the bug were triggered in Broadcom's Wi-Fi SoC when connecting to networks that allow wireless roaming. According to ZDNet, "one occurred during the handling of the IEEE 802.11r Fast BSS Transition Feature's authentication response, while the other can be triggered when Cisco's proprietary CCKM Fast and Secure Roaming feature parsed a reassociation response."Don't Miss: Your Android Apps Are Secretly Getting Chatty with Your DataThe attacker was able to trigger vulnerabilities within Broadcom's code simply by being on the same Wi-Fi network as the targeted phone. Beniamini was then able to backtrack and look for what he calls "tags," which are chunks of data, or "Information Elements" (IEs) within the Wi-Fi management system:The presence of the 802.11r FT feature is indicated by the "fbt" tag. Similarly, support for CCKM is indicated by the "ccx" tag. Unfortunately, it seems that the Nexus 6P supports neither of these features. In fact, running a quick search for the "ccx" feature (CCKM support) on my own repository of Android firmware images revealed that this feature is not supported on any Nexus device, but is supported on a wide variety of Samsung flagship devices, a very partial list of which includes the Galaxy S7 (G930F, G930V), the Galaxy S7 Edge (G935F, G9350), the Galaxy S6 Edge (G925V) and many more.While combing through the firmware repository, Beniamini found two other tags with the name "Tunneled Direct Link Setup" (TDLS). TDLS is a connection that allows you to share data with other people on a Wi-Fi network, similar to how AirDrop works on the iPhone, but most importantly for us here, this means that TDLS is a vulnerability that can be hacked into.While researching TDLS, noted in the Wi-Fi firmware as "betdls" and "tdls" tags, Beniamini concluded that the attackers were able to leverage these bugs by exploiting TDLS vulnerabilities within the Wi-Fi SoC code as "a vast majority of devices do, indeed, support TDLS. This includes all recent Nexus devices (Nexus 5, 6, 6P) and most Samsung flagships."Ultimately, the three companies are working to plug up all the holes. Beniamini patched up the vulnerabilities for iOS 10.3.1 for iPhone users, and also alerted Google. Broadcom is also working on fixing the vulnerabilities within its systems to prevent an attacker from executing code on its Wi-Fi chip, so stay on the lookout for firmware updates for both your phone and your router.Don't Miss: The 4 Best Phones for Privacy & SecurityFollow Gadget Hacks on Facebook, Twitter, Google+, and YouTube Follow Apple Hacks on Facebook, Twitter, and Pinterest Follow Android Hacks on Facebook, Twitter, and Pinterest Follow WonderHowTo on Facebook, Twitter, Pinterest, and Google+
Cover image via Kaboompics/Pixabay
Learn how you can re-order or re-arrange the notification panel shortcuts so that you can quickly access to the most useful functions on the Samsung Galaxy S4. "samsung galaxy" galaxy samsung s iv
Use the Notifications Panel on Samsung Galaxy S5 - VisiHow
If you're looking for a straightforward and simple to use video calling app that is available for both android and iOS, then IMO is one of the best options. The app offers end-to-end encrypted high quality video calls that you can make between android and iPhones with ease.
BBM Video Beta Brings iPhone and Android Cross-Platform Video
This video show How to make an easy and cheap DIY holographic display. Holographic pyramid using your iPhone or any other phone or screen. Como hacer un holograma fácil y barato, holograma de la
How to Make a Holographic Illusion Pyramid: 11 Steps
How to Back Up an Android Phone on the Google Cloud. To ensure your phone data's safety, you should back up your phone to the Google Cloud--Android's online file storage--every couple of weeks.
How to manage your Google Account on your Android phone
Multiple Social Networks Video Uploading in One Go! Vid Octopus is a video distribution and sharing app to upload video to social media for content creators, advertisers and for anyone who wishes to upload their videos to multiple video hosting sites and social networks like YouTube, Facebook, Dailymotion, Dropbox, in one go.
Vid Octopus - Video Uploader - download.cnet.com
The auto setting works fine in regular light 90% of the time, but at times suffers from a few weird quirks. Pictures are all more than usable, but I noticed the camera has a tendency to add a
Best HTC phones - PhoneArena - Phone Arena - Phone News
Never be left without light in an emergency with the Solar Powered Hand Crank Flashlight by Stalwart. Featuring a rechargeable solar panel and windup crank, this LED light stores energy and produces light without the use of battery or electricity.
Emergency Handcrank Flashlight You Can Make at Home!! - YouTube
Jack Wallen shows you one of the fastest ways to remove unwanted apps on your Samsung Galaxy S4. Pro tip: Quickly uninstall applications from the Samsung Galaxy S4 app drawer and the voice
How To Remove Bloatware from Samsung Galaxy S5 - NaldoTech
Google has a lesser-known Android app called Device Assist that might just be one of the most useful programs the company has ever published. It offers interactive guides and general tech support for Android, plus it can diagnose your device and help you fix any issues it finds.
How to Keep Your PC Running Fast and Smooth - wikiHow
The only thing you need is to have Android Device Manager enabled on your device (before you locked yourself out of your phone). If you have a Samsung phone, you can also unlock your phone using your Samsung account. Forgot your Android lock screen pattern, PIN or password? Here's what to do
How To Unlock Pattern Lock On Android Phone (3 - Safe Tricks
While it is possible to get silent mode by using Interruptions in 'Priority' mode, the whole process is time consuming and cumbersome at best. Thankfully, quite a few methods exist to bring back silent mode in Android 5.0 Lollipop, which are pretty straightforward and hardly take any time.
[Xposed] True Silent Mode for Lollipop v2.9 | Xposed General
Soundcloud Infos: Millions of musical artists to discover and share. Soundcloud help new artists to launch their popularity. Soundcloud is a place where musicians can upload and share their music. Soundcloud allow users to listen and download free music online without registering. Producers can upload their songs.
Sites Like Soundcloud, The 14 Best Alternatives (as of
hiphopspeakeasy.com/2017/02/alternatives-soundcloud-ultimate-guide/
Teetering between the minimalism of Clyp.it and the branded style of Soundcloud, Yung.Cloud focuses on the music and the artist, that's it. Just like Soundcloud, the main focal points are around the Stream, which is made up of tracks uploaded by friends you add on the service, and Explore, which is where you can go to discover new music
How to Download Music from SoundCloud Straight to Your
In this tutorial, I'll be showing you how to remove the carrier label located on your Android Lollipop's lock screen. It's a very simple process, but you will need to be rooted and running the
How to get rid of carrier name on Lock Screen? - Samsung
0 comments:
Post a Comment