Friday 26 June 2026 13:29:34 GMT+02:00

Netcrook

HomeManifesto
News
Corporate Security IncidentsCloud, SaaS & Identity SecurityIndustrial Cybersecurity & Critical InfrastructureCyber Intelligence, TrendsAI Security & Agentic SystemsCyber Intelligence & Threat TrendsCyber WarfareCyber Warfare & Nation-State OperationsCyber CriminalityBreaches & Data LeaksCybercrimeMalware & BotnetsRansomware & ExtortionSecurity Awareness & Social EngineeringLegal PolicyLegal, Policy & Government CybersecurityPrivacy, Regulation & ComplianceTechnology, InnovationTechnology, Innovation & Digital InfrastructureVulnerabilities Patch ManagementResearch, Exploits & Offensive SecurityVulnerabilities & Patch Management
Techcrook
Tutte le tecnologieIdentita e accessoFirewall e reteBackup e archiviazioneEnergia e continuitaPrivacy e sicurezza fisicaLaboratorio e prototipazioneStampa e tracciabilitaTecnologia quotidiana
Geocrook
AfricaAsiaEuropeMiddle EastNorth AmericaOceaniaSouth America
WikicrookTeamAppContact
EnglishItalianoArabic
Vulnerabilities & Patch Management

Android’s Achilles’ Chip: MediaTek Flaw Lets Thieves Crack Your PIN in Seconds

13 March 2026 09:33Vulnerabilities & Patch ManagementKERNELWATCHER

Subtitle: A critical hardware vulnerability in MediaTek Dimensity 7300 leaves millions of Android phones open to lightning-fast physical attacks-and your crypto isn’t safe.

It was supposed to be another routine security audit. Instead, security researchers at Ledger’s Donjon lab uncovered a chilling truth: with a $250 device and less than a minute, an attacker can rip the digital keys to your life straight from your pocket. If you’re using an Android phone powered by MediaTek’s Dimensity 7300 chip, your PIN, encrypted files, and cryptocurrency wallets could be just 45 seconds away from falling into the wrong hands.

Fast Facts

  • MediaTek Dimensity 7300 hardware flaw affects roughly 25% of global Android devices.
  • Attackers can extract PINs, decrypt storage, and steal crypto wallet seed phrases in under a minute.
  • The exploit targets the Boot ROM-a part of the chip that cannot be fully fixed with software updates.
  • Popular brands like Realme, Motorola, Oppo, Vivo, Tecno, Nothing, and Solana Seeker are impacted.
  • Ledger’s team demonstrated the attack live on a Nothing CMF Phone 1 using Electromagnetic Fault Injection (EMFI).

The Anatomy of a Silicon Heist

The vulnerability, discovered by Ledger’s Donjon team, lurks in the Boot ROM of MediaTek’s Dimensity 7300 chipset-a foundational piece of code burned directly into the chip itself. Unlike typical software bugs, this flaw is physically embedded and can’t be fully wiped out with a patch. The attack doesn’t happen over Wi-Fi or remotely; it requires physical access, a laptop, and a tool that delivers electromagnetic pulses to the phone’s chip.

Using a technique called Electromagnetic Fault Injection (EMFI), the attacker repeatedly restarts the phone while blasting the chip with rapid EM pulses. This disrupts the phone’s security checks at the deepest hardware level, letting attackers run their own code before the Android system even loads. In a chilling demonstration, researchers cracked open a Nothing CMF Phone 1, bypassed its security in 45 seconds, and extracted both the PIN and secret seed phrases from popular crypto wallets like Trust Wallet and Kraken Wallet.

The implications are vast. Phones from major brands-many marketed as “secure” or even “crypto-ready”-are vulnerable if they use this chipset and the Trustonic Trusted Execution Environment (TEE), a technology meant to protect sensitive operations. Even if you install the latest software updates, the flaw remains lurking in the silicon. MediaTek has issued patches to block specific attack pathways, but the unpatchable nature of the Boot ROM means a determined thief with the right tools could still break in.

Experts warn that while this attack requires physical access and specialized equipment, it’s highly practical for criminals targeting high-value devices, especially those holding cryptocurrency or sensitive corporate secrets. Ledger’s CTO Charles Guillemet doesn’t mince words: “Smartphones aren’t digital vaults.” His advice? Transfer your most sensitive assets to hardware wallets built for true security-and never assume your phone is impenetrable.

Looking Ahead: Can We Trust Our Phones?

This latest exploit should serve as a wake-up call: beneath the glossy screens and encrypted apps, many smartphones are built on hardware that was never designed for fortress-grade security. Until chipmakers rethink their approach and users move their digital treasures off everyday devices, the threat will persist-fast, silent, and just a pulse away.

WIKICROOK

  • Boot ROM: Boot ROM is permanent memory containing the first code run at startup, crucial for device initialization and security in the boot process.
  • Electromagnetic Fault Injection (EMFI): Electromagnetic fault injection uses EM pulses to disrupt microchips, enabling attackers to bypass security or extract data from embedded systems.
  • Trusted Execution Environment (TEE): A Trusted Execution Environment (TEE) is a secure processor area that protects sensitive data and operations from hackers and malware, even if the system is compromised.
  • Seed Phrase: A seed phrase is a set of words that acts as the master key to a crypto wallet. Anyone with it can access and control your funds.
  • Arbitrary Code Execution: Arbitrary Code Execution lets attackers run any code on a system, often leading to full control, data theft, or malware installation.
KERNELWATCHER
AuthorKERNELWATCHER

Vulnerabilities & Patch Management