Check Point refers to the discovered vulnerability set as 'QuadRooter'. If attackers exploit these vulnerabilities, they can take complete control of the device and gain unlimited access to personal information and company data. The access also allows the use of keylogging, GPS tracking or the recording of videos or audio recordings.

The vulnerabilities were found in the software drivers for Qualcomm chipsets. Cybercriminals can exploit these vulnerabilities with the help of an infected app. As the app does not require any special user rights, data thieves can operate without users noticing. The affected devices include the Samsung Galaxy S7 and S7 Edge, the Sony Xperia Z Ultra, Google Nexus 5X, 6 & 6P, the HTC One M9 and HTC 10, LG G4, G5 and V10 and Motorola Moto X as well as the OnePlus One, 2 and 3, the BlackBerry Priv and the Blackphone 1 and 2.

Manufacturers have a duty

As the vulnerabilities were already installed in the software drivers when the devices were manufactured, they can only be rectified by installing a patch from the manufacturer or network operator. However, they can only execute the patches once they have received repaired drivers from Qualcomm. Check Point provides a free QuadRooter Scanner app in the Google Play Store, which Android users can use to find out whether their device is affected. The app also leads to patches that can already be downloaded.

"Vulnerabilities like QuadRooter show us the unique challenge of protecting Android devices and the data on them. The supply chain is complex, which means that each patch has to be customized and tested for each individual affected model," says Michael Shaulov, Head of Mobility Product Management at Check Point. This process can take months and leaves devices vulnerable in the meantime. In addition, users do not know that their data is at risk. Shaulov demands: "The process of how Android performs security updates is broken and needs to be fixed."

Take precautions

According to the security company, users can also do something themselves to protect their devices from attacks. They should download and install Android updates as soon as they are available. Users should also be aware of the effects of rooting devices. According to the security company, Android apps (.APK files) that can be downloaded from websites should also be avoided. This also applies to third-party apps and stores. It is better to download Android apps exclusively from the Google Play Store.

The rights clearance of apps should be checked thoroughly and carefully immediately upon installation. Under no circumstances should apps be allowed that request unnecessary rights, are unusual or unnecessary or require a lot of energy. In addition, users should only use trustworthy Wi-Fi networks - when traveling in an unfamiliar environment, you should pay attention to the network provider. Last but not least, users should consider purchasing mobile security solutions that detect unusual behavior on devices, including malware in installed apps.