- Buy Crypto
- Markets
Futures- Spot
- Copy Trade
- Earn
- More
Ledger researchers have discovered a vulnerability in a certain Android chipset, putting mobile Web3 wallets at risk of physical attacks.
BlockBeats News, December 4th. According to The Block, Ledger has stated that a recently discovered vulnerability in a widely used Android smartphone processor chip could pose a risk to users relying on Web3 wallets. If the device is physically accessed by an attacker, they could exploit a hardware fault injection to bypass core security checks and take control of the chip. While this discovery does not affect Ledger hardware wallets, it highlights the risks of relying solely on a smartphone hot wallet to secure digital assets. The team tested MediaTek's Dimensity 7300 chip manufactured by TSMC to determine if electromagnetic fault injection could disrupt the earliest stages of the boot process.
Using open-source tools, they injected timely electromagnetic pulses to interfere with the chip's boot ROM, extract its runtime information, and identify the attack path. Subsequently, the team bypassed the chip's write command filtering mechanisms, overwrote the return address on the boot ROM stack, and executed arbitrary code in EL3 (the processor's highest privilege level), with the attack repeatable within minutes. Ledger stated that even the most advanced smartphone chips are vulnerable to physical attacks and are not suitable for safeguarding private keys, emphasizing the criticality of secure elements in self-custody of digital assets. The vulnerability was reported to MediaTek in May, and affected manufacturers have been notified.
You may also like
The underlying business agreement of the trillion-dollar Agent economy: Understanding ERC-8183, it's not just about payments, but the future
When Wall Street's ETH begins to "yield": Looking at the asset properties of Ethereum from BlackRock's ETHB
The Power of Agency: The Agentic Wallet and the Next Decade of Wallets
Understanding x402 and MPP in One Article: Two Routes for Agent Payments
Particle Founder: The entrepreneurial insights I have gained the most from in the past year
Huang Renxun's latest podcast transcript: The future of Nvidia, the development of embodied intelligence and agents, the explosion of inference demand, and the public relations crisis of artificial intelligence
OKX Ventures Research Report: AI Agent Economic Infrastructure Research Report (Part 1)
The migration of settlement rights: B18 and the institutional starting point of on-chain banks
From Tencent and Circle: Looking at the Simple and Difficult Questions of Investment
The second half of stablecoins no longer belongs to the crypto circle
Cursor "Shell" Kimi Controversy Reversed: From Copyright Infringement Allegations to Authorized Collaboration, China's Open Source Model Once Again Becomes a Global AI Foundation
The Real Reason Tokens Don't Sell: 90% of Crypto Projects Overlook Investor Relations
Is the income of pump.fun real, earning a million dollars a day despite the market downturn?
The real reason why tokens are not selling: 90% of crypto projects neglect investor relations
Who is the true winner of the "Tokenization" narrative?
Moss: The Era of AI-Traded by Anyone | Project Introduction
Chip Smuggling Case Exposes Regulatory Loophole | Rewire News Evening Update
How a Structured AI Crypto Trading Bot Won at the WEEX Hackathon
Ritmex demonstrates how disciplined risk control and structured signals can make an AI crypto trading bot more stable and reliable on WEEX, highlighting the importance of combining execution discipline with scalable AI trading systems.
App