#1
#1 out of 150.00%
technology4h ago
Android flaw lets hackers unlock phones in under a minute
- Security researchers found a flaw on some MediaTek-powered Android phones that could bypass the PIN protection when the device is physically accessed.
- The CVE-2026-20435 defect exists in the Trusted Execution Environment used to guard keys and encrypted data.
- Attackers would need physical access and a USB connection during early boot to exploit the flaw.
- MTK has released a firmware patch, but rollout depends on each manufacturer.
- The risk is limited to affected devices; other chips like Qualcomm Snapdragon are not part of this issue.
- Users should install the latest updates and review device model and processor to confirm exposure.
- Security practices like strong locks, USB restriction, and 2FA can mitigate risk on affected devices.
- Researchers caution that the vulnerability highlights patch delivery gaps for cheaper, long-unpatched devices.
- Experts emphasize this flaw does not enable remote hacking; physical access is essential.
- The incident raises questions about security update guarantees for devices with critical encryption flaws.
Vote 0