Solana argues that an attacker would nonetheless want the permission of the cellphone proprietor to achieve entry.
Solana has responded to claims by blockchain safety agency CertiK that there’s a safety menace to its Saga cellphone. In a Wednesday video post on X, CertiK alleged that the holders of the smartphone could also be uncovered to what’s referred to as a “bootloader vulnerability”. In accordance with the agency, this loophole may enable unhealthy actors to create some form of backdoor entry to the cellphone.
In a bid to spotlight its discovery, CertiK showcased, by way of a screenshot, what Saga’s display would appear to be after a backdoor set up has been accomplished. The 1-minute video then concluded on the word that hackers can have full entry to the holder’s telephones and any knowledge that they may have saved therein. This consists of entry to their safely saved crypto. In an announcement, CertiK wrote:
“We display that this will compromise probably the most delicate knowledge saved on the cellphone, together with cryptocurrency personal keys.”
CertiK’s Report on Solana Saga Is Incorrect, Agency Counters
In the meantime, Solana has now reacted to the video, saying that CertiK’s claims are “inaccurate.” In its defence, the Saga cellphone maker says that the video doesn’t precisely present the vulnerability as one thing peculiar to the Saga gadget. At finest, it reveals somebody unlocking the bootloader, in a manner that may very well be executed with just about any Android gadget, Solana famous.
Moreover, Solana argues that an attacker would nonetheless want the permission of the cellphone proprietor to achieve entry. In accordance with Steven Laver, lead software program engineer of cellular at Solana Labs, unlocking the bootloader can solely happen on the behest of the proprietor. The corporate’s response reads:
“Unlocking the bootloader wipes the gadget, which customers are alerted about a number of occasions when unlocking the bootloader, so it’s not a course of that may happen with out customers’ energetic participation or consciousness.”
Solana released the Saga cellphone in April 2023 in a singular effort to merge Web3.0 with smartphones. In accordance with Laver, the cellphone was primarily designed to permit customers to have “self-custody of their belongings”. Nonetheless, it additionally introduced a extra comfy really feel to customers who may now take their belongings with them all over the place they went.
Initially, it had a price ticket of $1,099. Nonetheless, 4 months after the launch, Solana slashed the worth by practically half to $599. However whereas that’s widespread observe within the client electronics enterprise, the worth reduce was extra due to a steep decline in gross sales.
Up to now although, CertiK’s report has but to negatively influence SOL – the native token of the Solana community. As of publication, CoinMarketCap data even means that it’s up greater than 11% previously 24 hours.
CertiK is but to reply to Solana’s counterclaims as of press time.