Qualcomm’s Insecure TrustZone

Source: The Inquirer Qualcomm’s Insecure TrustZone

Check Point Researchers Break Qualcomm’s Worlds

There is a bug in Qualcomm’s Secure Execution Environment, found on  LG, Pixel, Samsung, Xiaomi, HTC, Sony, OnePlus, and many other phones, which breaks their Qualcomm’s Secure Execution Environment.  Thankfully it was patched in October 2019, though this may not be great news for those with older handsets.  They bombarded the phones with huge amounts of data using a fuzzing tool and found they could trigger states in which they could circumvent Qualcomm’s chain of trust, run trusted apps in the Normal World, load patched trusted apps into the Secure World and even more.  Update those phones before you read more about the researchers and how they discovered the flaws.

Someone should also remind Sebastian to download all available Intel legacy drivers before they disappear and he can’t update his classic hardware!

QSEE, more commonly known as Qualcomm Secure World, is a secured area present on the main processor. The purpose of creating this hardware-protected space is to secure sensitive information, such as passwords, payment card credentials and encryption keys.

Video News

About The Author

Jeremy Hellstrom

Call it K7M.com, AMDMB.com, or PC Perspective, Jeremy has been hanging out and then working with the gang here for years. Apart from the front page you might find him on the BOINC Forums or possibly the Fraggin' Frogs if he has the time.

Leave a reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.

Latest Podcasts

Archive & Timeline

Previous 12 months
Explore: All The Years!