Security News Rowhammer Exploit Puts All Android Phones At Risk, Researchers Demonstrate

Jack

Administrator
Thread author
Verified
Staff Member
Well-known
Jan 24, 2011
9,378


A new tool threatens to expose a huge swath of Android devices to serious risk. The attack called Drammer was devised by a team of researchers in Amsterdam and is based on the Rowhammer bug, which is a vulnerability that lets hackers manipulate data stored in memory chips.

The exploit has successfully pushed past key security defenses that protect an Android device from malicious codes. The researchers embedded it in an app that requires no permissions. Once, downloaded, it then proceeds on systematically taking over core parts of the operating system.

"The attacks that we are publishing now show that we need to think differently about how we protect software," Victor van der Veen, a member of the research team working for the University of Vrije, said in a Wired report. "A thing like Rowhammer shows that at any given time a trap can come up that nobody ever thought of."

Rowhammer works by attacking the mobile device's dynamic random access memory (DRAM) through repeated access to a row of transistors on a memory chip. The process can create damage as it causes electricity to leak causing a bit to flip. The systematic hammering attack ultimately allows attackers to subtly tamper data and gain control of the device.

This is critical because it means that the problem cannot be solved by a simple software update or conventional anti-hacking measures. The computer chip has to be replaced in order to eliminate the risk. To top it all, once hardware change has been instituted, there is the possibility that the user experience is permanently compromised.

Presently, the researchers has identified ARM-based devices and those that use x86 x64 architecture as particularly vulnerable. The researchers tested several devices and those that were found at risk include the Google Nexus 5, LG G4 and OnePlus One, among others. This information is a bit troubling to some because certain iPhone models are also equipped with the same memory chips.

There is still no known security fix for Rowhammer. Google has promised to look into the issue. In the meantime, the problem is threatening to blow over because it is also said to be effective when used to hack cloud platfomrs and browser application for the PC.

Read more: Rowhammer Exploit Puts All Android Phones At Risk, Researchers Demonstrate
 

Solarquest

Moderator
Verified
Staff Member
Malware Hunter
Well-known
Jul 22, 2014
2,525
Unfortunately the tool to test against this vulnerability didn't make it on Google play.
In the link below there is an update with a link to the tool.
I hope owners of new devices will be able to test them and to report their findings here.

Using Rowhammer bitflips to root Android phones is now a thing

Here the link

Update 10/24/2016 6:10 California time:The app still hasn't gone live in Google Play. People who are willing to sideload the app can find it here.
 
  • Like
Reactions: DardiM

About us

  • MalwareTips is a community-driven platform providing the latest information and resources on malware and cyber threats. Our team of experienced professionals and passionate volunteers work to keep the internet safe and secure. We provide accurate, up-to-date information and strive to build a strong and supportive community dedicated to cybersecurity.

User Menu

Follow us

Follow us on Facebook or Twitter to know first about the latest cybersecurity incidents and malware threats.

Top