Skip to main content
        • Products

          Q-Scout

          Leading edge mobile device security delivering dynamic, actionable intelligence for fleet-wide protection applications

          Q-MAST

          Comprehensive testing for developers who build, use, and manage mobile applications

          Q-Vet

          Mobile app vetting for curated and enterprise managed app stores

        • Solutions by Want

          Mobile Application Security Testing

          Advanced analysis utilizing static, dynamic & interactive analysis of Android and iOS mobile applications

          BYOD

          Secure devices connecting to the enterprise network in the work and live anywhere world

          App Vetting

          Transparent and high-confidence results using pass/fail security evidence

          End Users

          Airtight digital security that empowers you to make informed decisions on what apps you do and do not give access to

          Regulatory Compliance

          Automated compliance testing for the latest privacy and security standards

        • Untitled Document

          All Resources

          Blogs

          The latest industry news in cybersecurity’s ever-evolving landscape

          Newsroom

          Press releases, news stories and media highlights from Quokka

          Webinars

          Videos and content where you can learn about the latest threats, trends and issues in cybersecurity

          Whitepapers

          Insights and helpful assets for exploring cybersecurity and digital security

          Datasheets

          An in-depth description of Quokka solutions

        • Partners

          Learn more about Quokka’s technology partners

        • Company

          Careers

          There are jobs - and then there is a career at Quokka

          Industries

          Solutions designed for security needs of your organization

          Leadership

          Quokka’s global management team comprised of security experts and industry leaders

  • Support

Kryptowire Identifies Security and Privacy
Vulnerability in Mobile Device Chipset from China

March 15, 2022 – McLean, VA, United States–Kryptowire Inc., a mobile security and privacy solutions company, today announced that they have identified a critical security and privacy vulnerability affecting mobile devices with UNISOC, China’s largest designer of chips for mobile phones. The vulnerability within the chipset, if exploited, allows malicious actors to take control over user data and device functionality.

Specifically, the vulnerability allows intruders to access call and system logs, text messages, contacts, and other private data, video record the device’s screen or use the external-facing camera to record video, or even take control of the device remotely, altering or wiping data. Adhering to its disclosure policy, Kryptowire notified affected device manufacturers and carriers, as well as UNISOC, of the vulnerability in December 2021.

“In an increasingly competitive mobile device market, it’s imperative that device manufacturers establish and maintain trust among carriers and end users,” Alex Lisle, Chief Technical Officer, Kryptowire. “Kryptowire’s core technology, which provides rapid, automatic vulnerability scanning without intrusion into end user data, helps stakeholders find and remediate critical security and privacy gaps faster and more efficiently, increasing confidence in the face of complex security challenges.”

Mobile device and operating system (iOS and Android) use has increased rapidly in the pandemic era, especially as more exchanges, transactions, and communications go “mobile-first.” This combined with the new found risks in the supply-chain has resulted in oversights and security flaws. Accordingly, businesses need AI enabled cloud-based mobile security solutions that not only safeguard mobile devices from bad actors, but also provide intrusion-free protection to its end users. In 2021 alone, Kryptowire scanned over 3 billion lines of code across 70,000 applications, discovering over 500 vulnerabilities affecting approximately 2 billion devices.

Founded in 2011, Kryptowire developed and launched its Mobile Application Security Testing (MAST) service, leveraging its military-grade proprietary analysis engine. This AI enabled cloud-based service gives organizations the ability to automatically scan mobile content for security, privacy, and compliance issues without accessing source code. This saves time, reduces human resource burdens, and preserves end user privacy.

About Kryptowire

Kryptowire is a leader in cloud-based mobile security and privacy solutions, delivering organizations and end-users the peace of mind that comes with intrusion-free mobile security. We enable organizations to scan mobile devices and applications for security, compliance, and other vulnerabilities without accessing source code, saving time and preserving privacy. Our mission is to make world-class mobile security available to more businesses and communities around the world.

Please visit www.kryptowire.com or connect with us on LinkedIn and Twitter (@kryptowire) for more information.

Media Contact
[email protected]

Leave a Reply

Close Menu