高通晶片有漏洞 恐讓全球30% Android手 - 手機討論
By Genevieve
at 2021-05-10T16:41
at 2021-05-10T16:41
Table of Contents
1.原文連結:連結過長者請使用短網址。
https://www.chinatimes.com/realtimenews/20210510001808-260412
2.原文標題:標題須完整寫出(否則依板規刪除並水桶)。
高通晶片有漏洞 恐讓全球30% Android手機面臨竊聽風險
3.原文來源(媒體/作者):例:蘋果日報/王大明(若無署名作者則不須)
中時新聞網/黃慧雯
4.原文內容:請刊登完整全文(否則依板規刪除並水桶)。
11:07 2021/05/10 科技 黃慧雯
資訊安全研究公司CheckPoint公司指出,他們發現了一個存在高通(Qualcomm)
晶片的漏洞,很可能導致全球多達30%的Android手機面臨被駭客從遠端攻擊的可
能性,甚至可能還可竊聽電話!令人不寒而慄。
CheckPoint近期發表文章指出,他們發現了一個存在於高通Mobile Station
Modem (MSM) 介面中的漏洞。MSM所研發的系統單晶片(SoC),而其中讓modem
與外圍軟體組件溝通的則是QMI協議,該漏洞(CVE-2020-11292)被發現存在QMI
之中。這項漏洞很可能影響深遠,因為高通早在2G時代就在使用MSM,而根據
CheckPoint統計,QMI則估計被用於全球30%的Android手機之中,包含了Google
Pixel、LG手機、一加(One Plus)手機、小米手機以及三星Galaxy系列手機等
。
CheckPoint指出,從本質上來說,駭客可以透過上述的QMI協議漏洞,透過惡意
程序或是偽裝成木馬的Android應用程序,從遠端來攻擊使用者的設備。而利用
這個漏洞的惡意程序可以把自己「隱藏」在Modem晶片之中,手機當前具備的安
全措施都無法發現它。因為被植入惡意代碼,駭客有可能獲取使用者的通話記錄
、簡訊內容,並且竊聽電話。為了避免駭客利用這個漏洞,CheckPoint並未完整
分享與漏洞有關所有技術細節。
CheckPoint表示,高通已針對上述漏洞釋出安全修補程式,也通知了所有的
Android合作廠商。不過CheckPoint的發言人指出,很難確認哪一個品牌或哪一
款手機已經安裝了針對這項漏洞的安全修補程式。這項工作很需要時間,而在那
之前仍舊有很多手機將面臨上述漏洞而導致的風險。
5.心得/評論:內容須超過繁體中文30字(不含標點符號)。
這種事情最麻煩的就是自己的手機到底有沒有得到更新
如果是安全更新負責任的廠商應該沒什麼好擔心的
除此之外的就只能希望駭客沒有利用這個漏洞了
--
Sent from Google Chrome on Windows 10 Pro.
--
https://www.chinatimes.com/realtimenews/20210510001808-260412
2.原文標題:標題須完整寫出(否則依板規刪除並水桶)。
高通晶片有漏洞 恐讓全球30% Android手機面臨竊聽風險
3.原文來源(媒體/作者):例:蘋果日報/王大明(若無署名作者則不須)
中時新聞網/黃慧雯
4.原文內容:請刊登完整全文(否則依板規刪除並水桶)。
11:07 2021/05/10 科技 黃慧雯
資訊安全研究公司CheckPoint公司指出,他們發現了一個存在高通(Qualcomm)
晶片的漏洞,很可能導致全球多達30%的Android手機面臨被駭客從遠端攻擊的可
能性,甚至可能還可竊聽電話!令人不寒而慄。
CheckPoint近期發表文章指出,他們發現了一個存在於高通Mobile Station
Modem (MSM) 介面中的漏洞。MSM所研發的系統單晶片(SoC),而其中讓modem
與外圍軟體組件溝通的則是QMI協議,該漏洞(CVE-2020-11292)被發現存在QMI
之中。這項漏洞很可能影響深遠,因為高通早在2G時代就在使用MSM,而根據
CheckPoint統計,QMI則估計被用於全球30%的Android手機之中,包含了Google
Pixel、LG手機、一加(One Plus)手機、小米手機以及三星Galaxy系列手機等
。
CheckPoint指出,從本質上來說,駭客可以透過上述的QMI協議漏洞,透過惡意
程序或是偽裝成木馬的Android應用程序,從遠端來攻擊使用者的設備。而利用
這個漏洞的惡意程序可以把自己「隱藏」在Modem晶片之中,手機當前具備的安
全措施都無法發現它。因為被植入惡意代碼,駭客有可能獲取使用者的通話記錄
、簡訊內容,並且竊聽電話。為了避免駭客利用這個漏洞,CheckPoint並未完整
分享與漏洞有關所有技術細節。
CheckPoint表示,高通已針對上述漏洞釋出安全修補程式,也通知了所有的
Android合作廠商。不過CheckPoint的發言人指出,很難確認哪一個品牌或哪一
款手機已經安裝了針對這項漏洞的安全修補程式。這項工作很需要時間,而在那
之前仍舊有很多手機將面臨上述漏洞而導致的風險。
5.心得/評論:內容須超過繁體中文30字(不含標點符號)。
這種事情最麻煩的就是自己的手機到底有沒有得到更新
如果是安全更新負責任的廠商應該沒什麼好擔心的
除此之外的就只能希望駭客沒有利用這個漏洞了
--
Sent from Google Chrome on Windows 10 Pro.
--
Tags:
手機
All Comments
By Dinah
at 2021-05-14T08:26
at 2021-05-14T08:26
By Mia
at 2021-05-18T00:12
at 2021-05-18T00:12
By Kumar
at 2021-05-21T15:57
at 2021-05-21T15:57
By Gilbert
at 2021-05-25T07:42
at 2021-05-25T07:42
By Brianna
at 2021-05-28T23:28
at 2021-05-28T23:28
By Donna
at 2021-06-01T15:13
at 2021-06-01T15:13
By Frederic
at 2021-06-05T06:59
at 2021-06-05T06:59
By Hardy
at 2021-06-08T22:44
at 2021-06-08T22:44
By Puput
at 2021-06-12T14:30
at 2021-06-12T14:30
By Caroline
at 2021-06-16T06:15
at 2021-06-16T06:15
By Ophelia
at 2021-06-19T22:01
at 2021-06-19T22:01
By Mary
at 2021-06-23T13:46
at 2021-06-23T13:46
By William
at 2021-06-27T05:32
at 2021-06-27T05:32
By Gary
at 2021-06-30T21:17
at 2021-06-30T21:17
By Zenobia
at 2021-07-04T13:03
at 2021-07-04T13:03
By Rachel
at 2021-07-08T04:48
at 2021-07-08T04:48
By Linda
at 2021-07-11T20:34
at 2021-07-11T20:34
By Ingrid
at 2021-07-15T12:19
at 2021-07-15T12:19
By Doris
at 2021-07-19T04:04
at 2021-07-19T04:04
By Olive
at 2021-07-22T19:50
at 2021-07-22T19:50
By Ophelia
at 2021-07-26T11:35
at 2021-07-26T11:35
By Yedda
at 2021-07-30T03:21
at 2021-07-30T03:21
By Gary
at 2021-08-02T19:06
at 2021-08-02T19:06
By Carol
at 2021-08-06T10:52
at 2021-08-06T10:52
By Anthony
at 2021-08-10T02:37
at 2021-08-10T02:37
By Susan
at 2021-08-13T18:23
at 2021-08-13T18:23
By Ina
at 2021-08-17T10:08
at 2021-08-17T10:08
By Caitlin
at 2021-08-21T01:54
at 2021-08-21T01:54
By David
at 2021-08-24T17:39
at 2021-08-24T17:39
By Candice
at 2021-08-28T09:25
at 2021-08-28T09:25
By Adele
at 2021-09-01T01:10
at 2021-09-01T01:10
By Necoo
at 2021-09-04T16:56
at 2021-09-04T16:56
By Lauren
at 2021-09-08T08:41
at 2021-09-08T08:41
By Megan
at 2021-09-12T00:26
at 2021-09-12T00:26
By Mia
at 2021-09-15T16:12
at 2021-09-15T16:12
By Daph Bay
at 2021-09-19T07:57
at 2021-09-19T07:57
By Hedy
at 2021-09-22T23:43
at 2021-09-22T23:43
By Andrew
at 2021-09-26T15:28
at 2021-09-26T15:28
By Rebecca
at 2021-09-30T07:14
at 2021-09-30T07:14
By Zenobia
at 2021-10-03T22:59
at 2021-10-03T22:59
By Kristin
at 2021-10-07T14:45
at 2021-10-07T14:45
By Audriana
at 2021-10-11T06:30
at 2021-10-11T06:30
By Sierra Rose
at 2021-10-14T22:16
at 2021-10-14T22:16
By Donna
at 2021-10-18T14:01
at 2021-10-18T14:01
By Una
at 2021-10-22T05:47
at 2021-10-22T05:47
By Jacob
at 2021-10-25T21:32
at 2021-10-25T21:32
By Puput
at 2021-10-29T13:18
at 2021-10-29T13:18
By Edith
at 2021-11-02T05:03
at 2021-11-02T05:03
By Tristan Cohan
at 2021-11-05T20:48
at 2021-11-05T20:48
By Donna
at 2021-11-09T12:34
at 2021-11-09T12:34
By Cara
at 2021-11-13T04:19
at 2021-11-13T04:19
By Emma
at 2021-11-16T20:05
at 2021-11-16T20:05
By Madame
at 2021-11-20T11:50
at 2021-11-20T11:50
By Lydia
at 2021-11-24T03:36
at 2021-11-24T03:36
By Freda
at 2021-11-27T19:21
at 2021-11-27T19:21
By Isabella
at 2021-12-01T11:07
at 2021-12-01T11:07
By Hardy
at 2021-12-05T02:52
at 2021-12-05T02:52
By Vanessa
at 2021-12-08T18:38
at 2021-12-08T18:38
By Ophelia
at 2021-12-12T10:23
at 2021-12-12T10:23
By Margaret
at 2021-12-16T02:09
at 2021-12-16T02:09
By Quanna
at 2021-12-12T19:44
at 2021-12-12T19:44
By Jack
at 2021-12-16T11:30
at 2021-12-16T11:30
By Xanthe
at 2021-12-12T19:44
at 2021-12-12T19:44
By Jacky
at 2021-12-16T11:30
at 2021-12-16T11:30
By Doris
at 2021-12-12T19:44
at 2021-12-12T19:44
By Faithe
at 2021-12-16T11:30
at 2021-12-16T11:30
By Callum
at 2021-12-12T19:44
at 2021-12-12T19:44
By Victoria
at 2021-12-16T11:30
at 2021-12-16T11:30
By Mary
at 2021-12-12T19:44
at 2021-12-12T19:44
By Ivy
at 2021-12-16T11:30
at 2021-12-16T11:30
By Hedy
at 2021-12-12T19:44
at 2021-12-12T19:44
By Megan
at 2021-12-16T11:30
at 2021-12-16T11:30
By Bennie
at 2021-12-12T19:44
at 2021-12-12T19:44
By Cara
at 2021-12-16T11:30
at 2021-12-16T11:30
By Kumar
at 2021-12-12T19:44
at 2021-12-12T19:44
By Rachel
at 2021-12-16T11:30
at 2021-12-16T11:30
By Heather
at 2021-12-12T19:44
at 2021-12-12T19:44
By Frederic
at 2021-12-16T11:30
at 2021-12-16T11:30
By Caitlin
at 2021-12-12T19:44
at 2021-12-12T19:44
By Michael
at 2021-12-16T11:30
at 2021-12-16T11:30
By Zanna
at 2021-12-12T19:44
at 2021-12-12T19:44
By Sarah
at 2021-12-16T11:30
at 2021-12-16T11:30
By Ethan
at 2021-12-12T19:44
at 2021-12-12T19:44
By Hedda
at 2021-12-16T11:30
at 2021-12-16T11:30
By Jacob
at 2021-12-12T19:44
at 2021-12-12T19:44
By Andy
at 2021-12-16T11:30
at 2021-12-16T11:30
By Bennie
at 2021-12-12T19:44
at 2021-12-12T19:44
By Elizabeth
at 2021-12-16T11:30
at 2021-12-16T11:30
By Delia
at 2021-12-12T19:44
at 2021-12-12T19:44
By Bethany
at 2021-12-16T11:30
at 2021-12-16T11:30
By Doris
at 2021-12-12T19:44
at 2021-12-12T19:44
By Cara
at 2021-12-16T11:30
at 2021-12-16T11:30
By Hedy
at 2021-12-12T19:44
at 2021-12-12T19:44
Related Posts
Redmi K40 遊戲增強版可能會推出另一個搭
By Christine
at 2021-05-10T16:31
at 2021-05-10T16:31
Sony Xperia 10 III 台灣 5/18 上市發表
By Annie
at 2021-05-10T14:07
at 2021-05-10T14:07
xperia 5 ii的充電線?
By Annie
at 2021-05-10T13:44
at 2021-05-10T13:44
蘋果不加入安卓的返回手勢的原因?
By Leila
at 2021-05-10T13:18
at 2021-05-10T13:18
跑趴自拍機vivo V21周三登場 小米預料
By Emma
at 2021-05-10T12:12
at 2021-05-10T12:12