CertiK: Discovered a critical vulnerability in Solana Phone that allows user assets to be stolen within tens of seconds
CertiK has discovered a critical bootloader vulnerability in Solana Phone. CertiK's testing experts were able to jailbreak the phone in just one minute and "clean out" all of its assets with just a few steps.
The vulnerability stems from an insecure "bootloader unlock" feature. In addition to stealing user assets, it also exposes all personal data stored on the device. Over 2,100 devices have been at serious risk since early April. Given the complexity of the vulnerability and the need for physical access, CertiK has informed Solana of the vulnerability and publicly released this vulnerability warning to protect Web3 users and encourage them to take effective measures to protect their asset security.
CertiK released a video analyzing the details of the vulnerability on November 15. They emphasized that the vulnerability is not limited to Solana Phone and recommended that relevant projects and developers take immediate action to strengthen bootloader protection.
Disclaimer: The content of this article solely reflects the author's opinion and does not represent the platform in any capacity. This article is not intended to serve as a reference for making investment decisions.
You may also like
Investors Pivot to Bitcoin and Major Altcoins as Memecoin Hype Fades
Bank of England boss says stablecoins require 'high bar' regulations, still exploring a UK CBDC
Bank of England Governor Andrew Bailey said that bitcoin and stablecoins will require different approaches to regulation.The central bank chief also confirmed it was still looking into a CBDC in collaboration with the UK government.
Sol Strategies tapped as staking provider for 3iQ’s proposed Solana Staking ETF in Canada
3iQ submitted on Jan. 28 the preliminary prospectuses with the Ontario Securities Commission and other Canadian regulators to list the 3iQ Solana Staking ETF.As of Jan. 31, Sol Strategies and its subsidiaries held an aggregate of 189,968 SOL, worth about $38 million at press time.
LAYERUSDT now launched for futures trading and trading bots
Trending news
MoreCrypto prices
More
